SecurityXploit: DotDotPwn - Directory Traversal Checking and Scanning

Comments

Donate

Childfoundation
Newsletter
Contact
Wiki

Archiv

Homepage
Themes

DotDotPwn - Directory Traversal Checking and Scanning - Linux

Am Monday, 13. Feb 2012 im Topic 'Pentest'

DotDotPwn is a very flexible intelligent fuzzer to discover traversal directory vulnerabilities in software such as Web/FTP/TFTP servers, Web platforms such as CMSs, ERPs, Blogs, etc. Also, it has a protocol-independent module to send the desired payload to the host and port specified. On the other hand, it also could be used in a scripting way using the STDOUT module. It’s written in perl programming language and can be run either under *NIX or Windows platforms. Fuzzing modules supported in this version are – HTTP – HTTP URL – FTP – TFTP – Payload (Protocol independent) – STDOUT

Download
http://www.intrudefense.com.mx/dotdotpwn-v3.0.tar.gz
http://www.brainoverflow.org/code/dotdotpwn-v3.0.tar.gz

Sample usage:

HTTP:

perl ddpwn.pl -http website.com

FTP:

perl ddpwn.pl -ftp ftphost.com

CONTACT

Email Xploit

Links

Visitor

Exploits

1337day
exploit-id
Packetstormsecurity
xssed
Exploit-db
Securityreason
Exploit Search
Security Home
Exploit Search
vulnerability-lab
YGN Group
E Hacking News
E Hacking News
Securityvulns
Expbase
Hackerscenter
osvdb
exploitsdownload

Status

Zum Kommentieren bitte einloggen.

February 2012
Mon	Tue	Wed	Thu	Fri	Sat	Sun
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29
January				March