tag:blogger.com,1999:blog-8539880144347728238.post698335482314745082..comments2024-01-24T04:15:08.086-05:00Comments on Carnal0wnage Blog: Hunting & Exploiting Directory TraversalUnknownnoreply@blogger.comBlogger5125tag:blogger.com,1999:blog-8539880144347728238.post-69909479712155219992012-03-04T05:27:46.198-05:002012-03-04T05:27:46.198-05:00When I start Burp active scanner, it will automati...When I start Burp active scanner, it will automatically try to find file traversal vulnerabilities. Is it needed to perform the search manually even if you already launched active scanner? In another words - Can I rely on Burp active scanner it will find file traversal vulnerabilities?Rezorcinolnoreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-33000685716832132602012-02-22T22:40:54.189-05:002012-02-22T22:40:54.189-05:00kizushi, thanks for your comments !
Well, the nul...kizushi, thanks for your comments !<br /><br />Well, the null termination is located in TraversalEngine.pm:<br />my @Special_Sufixes = ("", "index.html", "index.htm", ";index.html", ";index.htm");<br /><br />Also, you can specify it through the -e parameter (file extension, e.g. .jpg)<br /><br />I hope it helps and again, thanks for your feedback !<br /><br />Cheersnitr0ushttps://www.blogger.com/profile/15550961026293815423noreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-90151041729866949352012-02-22T10:42:33.174-05:002012-02-22T10:42:33.174-05:00nitrØus: Personally, I don't like showing peop...nitrØus: Personally, I don't like showing people tools until they can prove they can do something manually.<br /><br />That said, I haven't really used your tool much before. I did a quick review of some source, and didn't see anything related to null/termination at end of strings. If I didn't see it, I'd love to know where it is. With out that you might miss a whole set of directory traversal vulns where the parameter is prefixed to a file name.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-78127651761887266602012-02-21T16:47:19.213-05:002012-02-21T16:47:19.213-05:00ewww perl... :-)ewww perl... :-)CGhttps://www.blogger.com/profile/11061967917509053185noreply@blogger.comtag:blogger.com,1999:blog-8539880144347728238.post-80761434053517488852012-02-17T18:06:39.823-05:002012-02-17T18:06:39.823-05:00You could use our fuzzer to discover Directory Tra...You could use our fuzzer to discover Directory Traversal vulnerabilities ;-)<br /><br />http://dotdotpwn.sectester.net/<br /><br />Cheers !nitr0ushttps://www.blogger.com/profile/15550961026293815423noreply@blogger.com