Enumerating old or backup files

**x0rcist** · 06-18-2011, 07:04 AM

Hi,

Can someone let me know how one can find files like admin2.php or admin.php.old files on webserver. I have heard w3af can do that but unable to figure it out.

Further dirbuster can also do that but wouldn't it be more efficient if I can feed the results of a spider. And it uses those results as seed as well e.g. if spider gives pages/directories like /admim /admin/index.php then tool can try /admin2/index.php or /adminold/index.php /adminonl/index.php.old etc.

If it is possbile plz point me how to do that.

thanks in advance for any your feedback.

**Anant Shrivastava** · 06-18-2011, 10:05 AM

not a complete answer.
but if you know that w3af can do it check there is a plugin in w3af to include all the directories you want it to scan.
that might help you.

**x0rcist** · 06-18-2011, 03:50 PM

Can you point out which plugin you are talking about?

Thanx

**Anant Shrivastava** · 06-19-2011, 03:03 AM

sorry for not pointing the source first

this plugin is what i was talking about. :
http://w3af.sourceforge.net/plugin-d...#importResults

**abhaythehero** · 08-09-2012, 11:30 AM

Often developers use git to manage there code repo and push it to servers. What they sometimes forget it is to delete that .git directory.

This is a special directory made by git which contains head so that different backup versions can be sought when needed.

Here is an interesting read as to how the penetration tester found this directory and used for source code disclosure. Thus enumerating old or backup files. SkullSecurity » Blog Archive » Using "Git Clone" to get Pwn3D

Google dork for checking above is

Code:

".git" intitle:"Index of"

Thread: Enumerating old or backup files

LinkBack

Thread Tools

Search Thread

Display