Assessing Server Security - State of the Art. The talk takes into consideration the progress that has been made in web server security over the last few years, and the progress that has been made in attacking web servers over the same time. The paper visits the new vulnerabilities introduced by web applications and discuss the thinking applied to discover such vulnerabilities. It finally describes the state of the art of web server scanning technology.
100459d29fc8945bc761d6a2ccc7ce82103b8f31e835d98cf9a6ae54e18497c5Finder.pl remotely checks IIS Servers for most of the methods used by WebDAV. If the server does not complain about the method its an indication that WebDAV is in use. See ms03-007.
ee03799da073c545d65ebc87a39171adc3d81c3cf8cb9ebe987ea93ca69df4d2MielieTool v.1.0 is an easy to use Perl based web application "fuzzer". It supports fuzzing of CGIs in forms and links and supports multiple sites. Requires HTTrack, Lynx, grep, find, and rm.
efe615a070bb52a86f4508d814701ed4d6a3c1ea75ca01531f7e8a5ad1cf4e47Sp_Quickkill scans internal networks for unpatched windows machines, IIS and SQL.
78941018e6b74e5b871aa2d827e2f6b63074c8d472f41191cea1da645ff22ae5Mieliekoek.pl is a SQL insertion crawler which tests all forms on a web site for possible SQL insertion problems. This script takes the output of a web mirroring tools as input, inspecting every file and determine if there is a form in the file.
fe1bfe7f6e6e16ac4c2fcbed336c09b562bbbe5cb6b8556bfdf043b0c7344cffA guide for breaking into computer networks from the Internet v3.1 - Includes host enumeration, scanners, custom tools, protocols, windows information, and much more. PDF format.
5642b5fd57ab06d3f07c54c62e9e19ae2b481c0682ffaefba65288589227982eCheckpoint Firewall-1's SecureRemote allows any IP to connect and download sensitive network information. This perl script gives a potential attacker a wealth of information including ip addresses, network masks (and even friendly descriptions).
e3619e7d295ef6e80dc77aada9c151eaf7aeff1c25021ef117f8331019de3414Sensedecode.tgz includes 2 perl scripts which exploit the IIS url decoding bug. Decodecheck.pl checks for hosts that have the "decode" problem, and decodexecute executes code using the decoding problem, with redirection.
d32db266c769e68dd5e55144cdff5aac3d5f570243d3c50560169d168c96b542Go.pl allows you to scan ports through a misconfigured squid proxy.
98310269175325ec91f9370570f050216e816e3c000853861869d1df74773777Desperate is a collection of tools used to extract of usernames via EXPN and finger, and obtaining IP addresses via "brute force" DNS lookups. Contains lists of commonly used usernames and DNS names. Coded in PERL.
3eec3182b844f67054826bdc9dd5a20cdd822e3c2ec7659e61d174b262aeea46Unitools.tgz contains two perl scripts - unicodeloader.pl uploads files to a vulnerable IIS site, and unicodexecute3.pl includes searches for more executable directories and is more robust and stable.
ef1371caea9d6be5421cdfd47295c380d367086653e0281f537a4f4b1db5503ePudding is a proxy which recodes HTTP requests using most of RFP's IDS evasion encoding methods, plus random UTF-8 encoding support. Allows any web aware program/exploit/cgi-scanner to evade IDS without modification of the original code. Encoding methods include all uppercase, hex encoding, /./ directory insertion, fake parameters, premature URL endings, windows delimiters, and random UTF8 encoding.
c8a75f47892cf9971dfce9a19962ee940b44b6217ab7982e7299601b07617e91Unicodexecute2 is a simple perl script to execute commands on vulnerable IIS servers w/ Unicode, as described in this article.
5b2cf0d0ae0a8d6764aa36ceead14fd067a55867c82158f7611f7b7fe312bc2cdecoyblues.pl is a denial of service attack against active firewalls. Works by basically creating a lot of decoys with nmap. Router/firewall will try to block all the (decoyed) IP numbers, eventually running out of access list/packetfilters, and possibly crashing, or overwriting access lists.
cad12139ba8649d84be98349cfaf7e9026766bcf1b08660fe6c02a0942410501Win2k IIS remote exploit - Retrieves files using the Translate: f bug.
e6689da228eca55eaf015fe6410fad686f0c799a345cd10825bec3dd47b9ddc4Default Passwords for many network switches and devices. Includes many 3com products, ACC, AcceleratedDSL, ADC, Alteon, Arrowpoint, AT
39b068457d87fe9ccdf5c7fa081a0000390236b200f7392040d582c8c91acd72
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed