Forums: Webdav Scanner - Forums

Jump to content

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

Webdav Scanner

#1 User is offline   Nikscap 

  • Private
  • Icon
  • Group: Members
  • Posts: 19
  • Joined: 13-May 03

Posted 13 May 2003 - 04:13 PM

Download the most popular !

http://www.cnhonker..../WebDAVScan.rar ( 7.6 Kb Only )


Tips : when the scan is finish, u can see this file' WebDAVScan.txt ' , Open Ms Excel --> Import Data (*.*) --> choose delimited --> next --> select SPACE --> End

OR

Open the .txt with Notepad and replace CTRL+H DISABLE by 7x Space

It's more easy for test only vulnerable IP :]


PS: this scanner is good but ,but he just test if webdav is Enable .

I search Scanner Who test vulnerability !!!

if you see that Share IT !

Hacker named aT4r@3 have coded tool this tool : KaHT

Command line scanner how upload Rootkit, etc ...

I'v seen this here Webdav Scanner

Anyone have that ??? <_<
0

#2 Guest_Onlyone_*

  • Group: Guests

Post icon  Posted 02 June 2003 - 11:52 PM

Oh,www.cnhonker.net is a chinese web site!
Nikscap,you can speak chinese?
0

#3 Guest_Imps_*

  • Group: Guests

Posted 05 June 2003 - 05:14 AM

I have it :D


Greetz Imps
0

#4 Guest_BadBoy_Prez_*

  • Group: Guests

Post icon  Posted 15 June 2003 - 06:32 PM

I can read any language that www.altavista.com can read.

Just use its translate function!
:rolleyes:
0

#5 Guest_ShadyCrazy1_*

  • Group: Guests

Posted 16 June 2003 - 10:30 AM

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

heres the manual root kit for the webdav.

What shocked me as goofy was when I first got this, I hear alot about
exploits, So I assumed it would be an 1-2 step and your in, But the
exploit.exe is really a brute force type deal. never know it would be
this hard.

Now time to learn the works of it


-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0

iQIVAwUBPu4MGJS0O9G0L50JAQJN7w//W0jkBoVf9ofk8lKdjDXwAjD2MXEhxRqQ
q5msbyiWwis8yIuyQiQ+pdL3ToYrf+iyLW6E1oPOMhAZ9IqWeKJ8pfa+Fx63jhZa
tQN6Ol+NCUOMJih5wRet7N84NbU1v0HGSEfdwjQxVvysUlgOLA0WgW1RiVkA70ss
iop0phwKy2NV0RfSz22kGSCT/gbS+YdvZSrKCBXCI/DGHQXRaxU/yAppafFyaqLB
EqwB91pFomIxkjy/trqI94v+8mnp+eR350poX7sjkeSbB3pkOBDLtdXU1tA0xDf0
stNNY2pL27ZxtxSLtitleW+v9eDRiMHKOnqE/Gk6pqVXq0rwwn3OwOY8uppNBsEg
8SmBIk0TaOEQ7Wx1FrS2ZBZ+udS0cEVKM+kTZZq896uKhwKHi/IEMWGmrtNEphxo
vtSO9WALKa5kS2K9gGeummzPRo9W0sC81U51EfSFGiIdeXjOdHY9IHjOO6BJkDek
VuWUUdDhmDEsw4B4p7pc1BC6Onfv35+1zgh0BclNY3j8NZq5dQb+uKYrlpFQIoi3
z/eCMFnPtKAqBGFtuNBtkPkgmbMlmtyMkUktcsew4s1bbNzCuQt7i+BuKWKFLvJM
5Yo8aAJPeuoLTXnYLhgN9gYfObbL8WzaFyeKSBKcm4wnAekeR8VGS/FibxJfVMmm
myrHcezTsZg=
=4Hd3
-----END PGP SIGNATURE-----

Attached File(s)


0

#6 Guest_DjMillz_*

  • Group: Guests

Posted 13 March 2004 - 10:17 AM

hey.. i downloaded the rootkit.. and it works all
but now i have an webdav enable

building buffer ...DONE
Checking WebDav ...FOUND
Trying with custom pads ... OK
Connecting to '212.*.*.*' ..CONNECTED
trying ret addr 0x00d000d0 ..PATCHED?
DONE
HTTP/1.1 404 Resource Not Found
Server: Microsoft_CONNECTED
trying ret addr 0x00d000d0 Waiting for IIS to restart .....CONNECTED
trying ret addr 0x00d100d1 DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x00cd00cd DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x00ce00ce DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x000c000c DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x00d700d7 DONE
Trying with bruteforce pads ... OK
Waiting for IIS to restart .....CONNECTED

i started netcat..but it only says this:
listening on [ANY] 4020 ...

is that good?

PLZ HELP ME!
0

#7 User is offline   Cyrus 

  • Private First Class
  • Icon
  • Group: Members
  • Posts: 65
  • Joined: 15-December 03

Posted 13 March 2004 - 10:22 AM

Quote

i started netcat..but it only says this:
listening on [ANY]4020 ...

is that good?

Nope, if u have luck,u will have a shell fired to the listening netcat. But u need much luck and many servers to get a shell :/
0

#8 Guest_DjMillz_*

  • Group: Guests

Posted 13 March 2004 - 10:28 AM

how do you mean? is there an other way?
0

#9 Guest_DjMillz_*

  • Group: Guests

Posted 13 March 2004 - 10:35 AM

And this one:

building buffer ...DONE
Checking WebDav ...FOUND
Trying with custom pads ... OK
Connecting to '212.82.1.145' ..CONNECTED
trying ret addr 0x00d000d0 ......DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x00d100d1 ......DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x00cd00cd ......DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x00ce00ce ......DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x000c000c ......DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x00d700d7 ......DONE
Trying with bruteforce pads ... OK
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x000b000b ......DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x000c000c ......DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x000d000d ......DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x000e000e ......DONE
Waiting for IIS to restart .....CONNECTED
trying ret addr 0x000f000f
0

#10 User is offline   Cyrus 

  • Private First Class
  • Icon
  • Group: Members
  • Posts: 65
  • Joined: 15-December 03

Posted 13 March 2004 - 10:36 AM

Maybe there is one, but i dont know it. Dont know, maybe there is a better exploit which works faster and better.
0

#11 User is offline   prog 

  • Corporal
  • Icon
  • Group: Members
  • Posts: 159
  • Joined: 26-February 04

Posted 13 March 2004 - 01:46 PM

I see this uses a banner scanner.

Is there a command prompt banner scanner out?
0
Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users

  • Share



Our Sponsors:


SwiftLayer Affiliate Web Hosting