from http.server import BaseHTTPRequestHandler, HTTPServer
import time, subprocess, os
 
HOST = '0.0.0.0'
PORT = 7001
 
# check for OS to use the corrent commands
if os.name == 'posix':
    COMMAND_LIST = 'ls'
    COMMAND_PRINT = 'cat'
else:
    COMMAND_LIST = 'dir'
    COMMAND_PRINT = 'type'
 
# create an HTTP handler based on the existing BaseHTTPRequestHandler
class HTTPHandler(BaseHTTPRequestHandler):
 
    def do_GET(self): # generate the status code for the GET request
        self.respond({'status': 200})
 
    def handle_http(self, status_code, path): # handle the request
        self.send_response(status_code)
        self.send_header('Content-type', 'text/html')
        self.end_headers()
 
        # for debugging, we can read a specified file
        # this functionality exists for admins to test out how stuff works
        # admins can use normal linux terminal commands
        # users do not need to know about this :)
        debug = ''
        if '/?debug_cmd_now_you_see_me=' in path:
            command = path.replace('/?debug_cmd_now_you_see_me=', '')
            # there are only 2 commands available
            # ls - to list the current directory
            # cat file_name.txt - to show the content of the file: file_name.txt
            if command == 'ls':
                try:
                    debug = subprocess.check_output(COMMAND_LIST, shell=True).decode("utf-8")
                    debug = debug.replace('\r\n', '<br>') # fix Windows files end-of-line
                    debug = debug.replace('\n', '<br>')   # fix Linux files end-of-line
                except:
                    debug = 'Sorry, can\'t run \'' + COMMAND_LIST + '\' on this system'
            elif 'cat' in command:
                command = command.replace('%20', ' ')
                filename = command.replace('cat ', '')
                if filename != '': # make sure that there is the file name in the command
                    if os.path.isfile(filename): # check if the file exists
                        try:
                            debug = subprocess.check_output(COMMAND_PRINT + ' "' + filename + '"', shell=True).decode("utf-8")
                            debug = debug.replace('\r\n', '<br>') # fix Windows files
                            debug = debug.replace('\n', '<br>')   # for Linux files
                        except:
                            debug = 'Sorry, can\'t run \'' + COMMAND_PRINT + ' ' + filename + '\' on this system'
            if debug != '':
                debug = '<h3>Never leave DEBUG functionality in production! It will definitely be exploited.</h3>' + debug
 
        # generate the output to show to the user
        current_output = '''
            <p>You accessed path: {}</p><!-- Place for the path -->
            <p>{}</p><!-- Place for the debug command output -->
            '''.format(path, debug)
 
        # make the HTML page to show the user and insert current_output there
        content = ''.join(open('index.html', 'r')).replace('CONTENT_PLACEMENT', current_output)
 
        return bytes(content, 'UTF-8')
 
    def respond(self, opts):
        response = self.handle_http(opts['status'], self.path)
        self.wfile.write(response)
 
if __name__ == '__main__':
    server = HTTPServer
    httpd = server((HOST, PORT), HTTPHandler)
    print(time.asctime(), 'Server Starts - %s:%s' % (HOST, PORT))
    try:
        httpd.serve_forever()
    except KeyboardInterrupt:
        pass
    httpd.server_close()
    print(time.asctime(), 'Server Stops - %s:%s' % (HOST, PORT))

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