RubyGems - arachni - Versions diffs - 0.2.2.1 - Mend

arachni 0.2.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (262) hide show

data/ACKNOWLEDGMENTS.md +14 -0
data/AUTHORS.md +6 -0
data/CHANGELOG.md +162 -0
data/CONTRIBUTORS.md +10 -0
data/EXPLOITATION.md +429 -0
data/HACKING.md +101 -0
data/LICENSE.md +341 -0
data/README.md +350 -0
data/Rakefile +86 -0
data/bin/arachni +22 -0
data/bin/arachni_web +77 -0
data/bin/arachni_xmlrpc +21 -0
data/bin/arachni_xmlrpcd +82 -0
data/bin/arachni_xmlrpcd_monitor +74 -0
data/conf/README.webui.yaml.txt +44 -0
data/conf/webui.yaml +11 -0
data/external/metasploit/LICENSE +24 -0
data/external/metasploit/modules/exploits/unix/webapp/arachni_exec.rb +142 -0
data/external/metasploit/modules/exploits/unix/webapp/arachni_path_traversal.rb +113 -0
data/external/metasploit/modules/exploits/unix/webapp/arachni_php_eval.rb +150 -0
data/external/metasploit/modules/exploits/unix/webapp/arachni_php_include.rb +141 -0
data/external/metasploit/modules/exploits/unix/webapp/arachni_sqlmap.rb +92 -0
data/external/metasploit/plugins/arachni.rb +536 -0
data/getoptslong.rb +241 -0
data/lib/anemone.rb +2 -0
data/lib/anemone/cookie_store.rb +35 -0
data/lib/anemone/core.rb +371 -0
data/lib/anemone/exceptions.rb +5 -0
data/lib/anemone/http.rb +144 -0
data/lib/anemone/page.rb +337 -0
data/lib/anemone/page_store.rb +160 -0
data/lib/anemone/storage.rb +34 -0
data/lib/anemone/storage/base.rb +75 -0
data/lib/anemone/storage/exceptions.rb +15 -0
data/lib/anemone/storage/mongodb.rb +89 -0
data/lib/anemone/storage/pstore.rb +50 -0
data/lib/anemone/storage/redis.rb +90 -0
data/lib/anemone/storage/tokyo_cabinet.rb +57 -0
data/lib/anemone/tentacle.rb +40 -0
data/lib/arachni.rb +16 -0
data/lib/audit_store.rb +346 -0
data/lib/component_manager.rb +293 -0
data/lib/component_options.rb +395 -0
data/lib/exceptions.rb +76 -0
data/lib/framework.rb +637 -0
data/lib/http.rb +809 -0
data/lib/issue.rb +302 -0
data/lib/module.rb +4 -0
data/lib/module/auditor.rb +455 -0
data/lib/module/base.rb +188 -0
data/lib/module/element_db.rb +158 -0
data/lib/module/key_filler.rb +87 -0
data/lib/module/manager.rb +87 -0
data/lib/module/output.rb +68 -0
data/lib/module/trainer.rb +240 -0
data/lib/module/utilities.rb +110 -0
data/lib/options.rb +547 -0
data/lib/parser.rb +2 -0
data/lib/parser/auditable.rb +522 -0
data/lib/parser/elements.rb +296 -0
data/lib/parser/page.rb +149 -0
data/lib/parser/parser.rb +717 -0
data/lib/plugin.rb +4 -0
data/lib/plugin/base.rb +110 -0
data/lib/plugin/manager.rb +162 -0
data/lib/report.rb +4 -0
data/lib/report/base.rb +119 -0
data/lib/report/manager.rb +92 -0
data/lib/rpc/xml/client/base.rb +71 -0
data/lib/rpc/xml/client/dispatcher.rb +49 -0
data/lib/rpc/xml/client/instance.rb +88 -0
data/lib/rpc/xml/server/base.rb +90 -0
data/lib/rpc/xml/server/dispatcher.rb +357 -0
data/lib/rpc/xml/server/framework.rb +206 -0
data/lib/rpc/xml/server/instance.rb +191 -0
data/lib/rpc/xml/server/module/manager.rb +46 -0
data/lib/rpc/xml/server/options.rb +124 -0
data/lib/rpc/xml/server/output.rb +299 -0
data/lib/rpc/xml/server/plugin/manager.rb +58 -0
data/lib/ruby.rb +5 -0
data/lib/ruby/object.rb +32 -0
data/lib/ruby/string.rb +74 -0
data/lib/ruby/xmlrpc/server.rb +27 -0
data/lib/spider.rb +200 -0
data/lib/typhoeus/request.rb +91 -0
data/lib/typhoeus/response.rb +34 -0
data/lib/ui/cli/cli.rb +744 -0
data/lib/ui/cli/output.rb +279 -0
data/lib/ui/web/log.rb +82 -0
data/lib/ui/web/output_stream.rb +94 -0
data/lib/ui/web/report_manager.rb +222 -0
data/lib/ui/web/server.rb +903 -0
data/lib/ui/web/server/db/placeholder +0 -0
data/lib/ui/web/server/public/banner.png +0 -0
data/lib/ui/web/server/public/bodybg-small.png +0 -0
data/lib/ui/web/server/public/bodybg.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/pbar-ani.gif +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-bg_flat_0_aaaaaa_40x100.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-bg_flat_75_ffffff_40x100.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-bg_glass_55_fbf9ee_1x400.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-bg_glass_65_ffffff_1x400.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-bg_glass_75_dadada_1x400.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-bg_glass_75_e6e6e6_1x400.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-bg_glass_95_fef1ec_1x400.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-bg_highlight-soft_75_cccccc_1x100.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-icons_222222_256x240.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-icons_2e83ff_256x240.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-icons_454545_256x240.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-icons_888888_256x240.png +0 -0
data/lib/ui/web/server/public/css/smoothness/images/ui-icons_cd0a0a_256x240.png +0 -0
data/lib/ui/web/server/public/css/smoothness/jquery-ui-1.8.9.custom.css +573 -0
data/lib/ui/web/server/public/favicon.ico +0 -0
data/lib/ui/web/server/public/footer.jpg +0 -0
data/lib/ui/web/server/public/icons/error.png +0 -0
data/lib/ui/web/server/public/icons/info.png +0 -0
data/lib/ui/web/server/public/icons/ok.png +0 -0
data/lib/ui/web/server/public/icons/status.png +0 -0
data/lib/ui/web/server/public/js/jquery-1.4.4.min.js +167 -0
data/lib/ui/web/server/public/js/jquery-ui-1.8.9.custom.min.js +781 -0
data/lib/ui/web/server/public/logo.png +0 -0
data/lib/ui/web/server/public/nav-left.jpg +0 -0
data/lib/ui/web/server/public/nav-right.jpg +0 -0
data/lib/ui/web/server/public/nav-selected-left.jpg +0 -0
data/lib/ui/web/server/public/nav-selected-right.jpg +0 -0
data/lib/ui/web/server/public/reports/placeholder +1 -0
data/lib/ui/web/server/public/sidebar-bottom.jpg +0 -0
data/lib/ui/web/server/public/sidebar-h4.jpg +0 -0
data/lib/ui/web/server/public/sidebar-top.jpg +0 -0
data/lib/ui/web/server/public/spider.png +0 -0
data/lib/ui/web/server/public/style.css +604 -0
data/lib/ui/web/server/tmp/placeholder +0 -0
data/lib/ui/web/server/views/dispatcher.erb +85 -0
data/lib/ui/web/server/views/dispatcher_error.erb +14 -0
data/lib/ui/web/server/views/error.erb +1 -0
data/lib/ui/web/server/views/flash.erb +18 -0
data/lib/ui/web/server/views/home.erb +14 -0
data/lib/ui/web/server/views/instance.erb +213 -0
data/lib/ui/web/server/views/layout.erb +95 -0
data/lib/ui/web/server/views/log.erb +40 -0
data/lib/ui/web/server/views/modules.erb +71 -0
data/lib/ui/web/server/views/options.erb +23 -0
data/lib/ui/web/server/views/output_results.erb +51 -0
data/lib/ui/web/server/views/plugins.erb +42 -0
data/lib/ui/web/server/views/report_formats.erb +30 -0
data/lib/ui/web/server/views/reports.erb +55 -0
data/lib/ui/web/server/views/settings.erb +120 -0
data/lib/ui/web/server/views/welcome.erb +38 -0
data/lib/ui/xmlrpc/dispatcher_monitor.rb +204 -0
data/lib/ui/xmlrpc/xmlrpc.rb +843 -0
data/logs/placeholder +0 -0
data/metamodules/autothrottle.rb +74 -0
data/metamodules/timeout_notice.rb +118 -0
data/metamodules/uniformity.rb +98 -0
data/modules/audit/code_injection.rb +136 -0
data/modules/audit/code_injection_timing.rb +115 -0
data/modules/audit/code_injection_timing/payloads.txt +4 -0
data/modules/audit/csrf.rb +301 -0
data/modules/audit/ldapi.rb +103 -0
data/modules/audit/ldapi/errors.txt +26 -0
data/modules/audit/os_cmd_injection.rb +103 -0
data/modules/audit/os_cmd_injection/payloads.txt +2 -0
data/modules/audit/os_cmd_injection_timing.rb +104 -0
data/modules/audit/os_cmd_injection_timing/payloads.txt +3 -0
data/modules/audit/path_traversal.rb +141 -0
data/modules/audit/response_splitting.rb +105 -0
data/modules/audit/rfi.rb +193 -0
data/modules/audit/sqli.rb +120 -0
data/modules/audit/sqli/regexp_ids.txt +90 -0
data/modules/audit/sqli_blind_rdiff.rb +321 -0
data/modules/audit/sqli_blind_timing.rb +103 -0
data/modules/audit/sqli_blind_timing/payloads.txt +51 -0
data/modules/audit/trainer.rb +89 -0
data/modules/audit/unvalidated_redirect.rb +90 -0
data/modules/audit/xpath.rb +104 -0
data/modules/audit/xpath/errors.txt +26 -0
data/modules/audit/xss.rb +99 -0
data/modules/audit/xss_event.rb +134 -0
data/modules/audit/xss_path.rb +125 -0
data/modules/audit/xss_script_tag.rb +112 -0
data/modules/audit/xss_tag.rb +112 -0
data/modules/audit/xss_uri.rb +125 -0
data/modules/recon/allowed_methods.rb +104 -0
data/modules/recon/backdoors.rb +131 -0
data/modules/recon/backdoors/filenames.txt +16 -0
data/modules/recon/backup_files.rb +177 -0
data/modules/recon/backup_files/extensions.txt +28 -0
data/modules/recon/common_directories.rb +138 -0
data/modules/recon/common_directories/directories.txt +265 -0
data/modules/recon/common_files.rb +138 -0
data/modules/recon/common_files/filenames.txt +17 -0
data/modules/recon/directory_listing.rb +171 -0
data/modules/recon/grep/captcha.rb +62 -0
data/modules/recon/grep/credit_card.rb +85 -0
data/modules/recon/grep/cvs_svn_users.rb +73 -0
data/modules/recon/grep/emails.rb +59 -0
data/modules/recon/grep/html_objects.rb +53 -0
data/modules/recon/grep/private_ip.rb +54 -0
data/modules/recon/grep/ssn.rb +53 -0
data/modules/recon/htaccess_limit.rb +82 -0
data/modules/recon/http_put.rb +95 -0
data/modules/recon/interesting_responses.rb +118 -0
data/modules/recon/unencrypted_password_forms.rb +119 -0
data/modules/recon/webdav.rb +126 -0
data/modules/recon/xst.rb +107 -0
data/path_extractors/anchors.rb +35 -0
data/path_extractors/forms.rb +35 -0
data/path_extractors/frames.rb +38 -0
data/path_extractors/generic.rb +39 -0
data/path_extractors/links.rb +35 -0
data/path_extractors/meta_refresh.rb +39 -0
data/path_extractors/scripts.rb +37 -0
data/path_extractors/sitemap.rb +31 -0
data/plugins/autologin.rb +137 -0
data/plugins/content_types.rb +90 -0
data/plugins/cookie_collector.rb +99 -0
data/plugins/form_dicattack.rb +185 -0
data/plugins/healthmap.rb +94 -0
data/plugins/http_dicattack.rb +133 -0
data/plugins/metamodules.rb +118 -0
data/plugins/proxy.rb +248 -0
data/plugins/proxy/server.rb +66 -0
data/plugins/waf_detector.rb +184 -0
data/profiles/comprehensive.afp +74 -0
data/profiles/full.afp +75 -0
data/reports/afr.rb +59 -0
data/reports/ap.rb +55 -0
data/reports/html.rb +179 -0
data/reports/html/default.erb +967 -0
data/reports/metareport.rb +139 -0
data/reports/metareport/arachni_metareport.rb +174 -0
data/reports/plugin_formatters/html/content_types.rb +82 -0
data/reports/plugin_formatters/html/cookie_collector.rb +66 -0
data/reports/plugin_formatters/html/form_dicattack.rb +54 -0
data/reports/plugin_formatters/html/healthmap.rb +76 -0
data/reports/plugin_formatters/html/http_dicattack.rb +54 -0
data/reports/plugin_formatters/html/metaformatters/timeout_notice.rb +65 -0
data/reports/plugin_formatters/html/metaformatters/uniformity.rb +71 -0
data/reports/plugin_formatters/html/metamodules.rb +93 -0
data/reports/plugin_formatters/html/waf_detector.rb +54 -0
data/reports/plugin_formatters/stdout/content_types.rb +73 -0
data/reports/plugin_formatters/stdout/cookie_collector.rb +61 -0
data/reports/plugin_formatters/stdout/form_dicattack.rb +52 -0
data/reports/plugin_formatters/stdout/healthmap.rb +72 -0
data/reports/plugin_formatters/stdout/http_dicattack.rb +53 -0
data/reports/plugin_formatters/stdout/metaformatters/timeout_notice.rb +55 -0
data/reports/plugin_formatters/stdout/metaformatters/uniformity.rb +68 -0
data/reports/plugin_formatters/stdout/metamodules.rb +89 -0
data/reports/plugin_formatters/stdout/waf_detector.rb +48 -0
data/reports/plugin_formatters/xml/content_types.rb +91 -0
data/reports/plugin_formatters/xml/cookie_collector.rb +70 -0
data/reports/plugin_formatters/xml/form_dicattack.rb +57 -0
data/reports/plugin_formatters/xml/healthmap.rb +82 -0
data/reports/plugin_formatters/xml/http_dicattack.rb +57 -0
data/reports/plugin_formatters/xml/metaformatters/timeout_notice.rb +67 -0
data/reports/plugin_formatters/xml/metaformatters/uniformity.rb +82 -0
data/reports/plugin_formatters/xml/metamodules.rb +91 -0
data/reports/plugin_formatters/xml/waf_detector.rb +58 -0
data/reports/stdout.rb +182 -0
data/reports/txt.rb +77 -0
data/reports/xml.rb +231 -0
data/reports/xml/buffer.rb +98 -0
metadata +516 -0

data/modules/recon/backdoors/filenames.txt ADDED

@@ -0,0 +1,16 @@
+r57shell.php
+r57.php
+c99shell.php
+c99.php
+nstview.php
+nst.php
+rst.php
+r57eng.php
+shell.php
+r.php
+lol.php
+zehir.php
+c-h.v2.php
+php-backdoor.php
+simple-backdoor.php
+cmdasp.asp

data/modules/recon/backup_files.rb ADDED

@@ -0,0 +1,177 @@
+=begin
+                  Arachni
+  Copyright (c) 2010-2011 Tasos "Zapotek" Laskos <tasos.laskos@gmail.com>
+  This is free software; you can copy and distribute and modify
+  this program under the term of the GPL v2.0 License
+  (See LICENSE file for details)
+=end
+module Arachni
+module Modules
+#
+# Backup file discovery module.
+#
+# Appends common backup extesions to the filename of the page under audit<br/>
+# and checks for its existence.
+#
+# @author: Tasos "Zapotek" Laskos
+#                                      <tasos.laskos@gmail.com>
+#                                      <zapotek@segfault.gr>
+# @version: 0.1.5
+#
+#
+class BackupFiles < Arachni::Module::Base
+    include Arachni::Module::Utilities
+    def initialize( page )
+        super( page )
+    end
+    def prepare
+        # to keep track of the requests and not repeat them
+        @@__audited ||= Set.new
+        # our results array
+        @results = []
+        @@__extensions ||=[]
+        return if !@@__extensions.empty?
+        read_file( 'extensions.txt' ) {
+            |file|
+            @@__extensions << file
+        }
+    end
+    def run( )
+        filename = File.basename( URI( normalize_url( @page.url ) ).path )
+        path     = get_path( @page.url )
+        return if @@__audited.include?( path )
+        print_status( "Scanning..." )
+        if( !filename  )
+            print_info( 'Backing out. ' +
+              'Can\'t extract filename from url: ' + @page.url )
+            return
+        end
+        @@__extensions.each {
+            |ext|
+            #
+            # Test for the existance of the file + extension.
+            #
+            file = ext % filename # Example: index.php.bak
+            url  = path + file
+            next if !( req1 = __request_once( url ) )
+            req1.on_complete {
+                |res|
+                __log_results( res, file )
+            }
+            file = ext % filename.gsub( /\.(.*)/, '' ) # Example: index.bak
+            url  = path + file
+            next if !( req2 = __request_once( url ) )
+            req2.on_complete {
+                |res|
+                __log_results( res, file )
+            }
+        }
+        @@__audited << path
+    end
+    def self.info
+        {
+            :name           => 'BackupFiles',
+            :description    => %q{Tries to find sensitive backup files.},
+            :elements       => [ ],
+            :author         => 'Tasos "Zapotek" Laskos <tasos.laskos@gmail.com> ',
+            :version        => '0.1.5',
+            :references     => {},
+            :targets        => { 'Generic' => 'all' },
+            :issue   => {
+                :name        => %q{A backup file exists on the server.},
+                :description => %q{},
+                :tags        => [ 'path', 'backup', 'file' ],
+                :cew         => '530',
+                :severity    => Issue::Severity::HIGH,
+                :cvssv2       => '',
+                :remedy_guidance    => '',
+                :remedy_code => '',
+            }
+        }
+    end
+    #
+    # Adds an issue to the @results array<br/>
+    # and outputs an "OK" message with the filename and its url.
+    #
+    # @param  [Net::HTTPResponse]  res   the HTTP response
+    # @param  [String]  filename   the discovered filename
+    #
+    def __log_results( res, filename )
+        # some webapps disregard the extension and load the page anyway
+        # which will lead to false positives, take care of that.
+        return if res.body == @page.html
+        return if( res.code != 200 || @http.custom_404?( res ) )
+        url = res.effective_url
+        # append the result to the results array
+        @results << Issue.new( {
+            :url          => url,
+            :injected     => filename,
+            :id           => filename,
+            :elem         => Issue::Element::PATH,
+            :response     => res.body,
+            :headers      => {
+                :request    => res.request.headers,
+                :response   => res.headers,
+            }
+        }.merge( self.class.info ) )
+        # register our results with the system
+        register_results( @results )
+        # inform the user that we have a match
+        print_ok( "Found #{filename} at " + url )
+    end
+    #
+    # Gets a URL only once
+    #
+    # @param  [String]  url   the url to get
+    #
+    # @return  [FalseClass/HTTPResponse]   false if the url has been
+    #                                          previously requested,<br/>
+    #                                          the HTTPResponse otherwise
+    #
+    def __request_once( url )
+        print_status( "Checking for #{url}" )
+        # force the Trainer to analyze it and if it's HTML it'll extract any new attack vectors.
+        req  = @http.get( url, :train => true )
+        return req
+    end
+end
+end
+end

data/modules/recon/backup_files/extensions.txt ADDED

@@ -0,0 +1,28 @@
+%s.old
+%s.OLD
+%s.bak
+%s.BAK
+%s.zip
+%s.ZIP
+%s.gz
+%s.tar.gz
+%s.temp
+%s.save
+%s.orig
+%s.backup
+%s.000
+%s~
+%s~1
+%s.cs
+%s.pas
+%s.vb
+%s.java
+%s.class
+%s.sav
+%s.saved
+%s.rar
+%s.src
+%s.tmp
+%s.inc
+%s.copy
+Copy%%20of%%20%s

data/modules/recon/common_directories.rb ADDED

@@ -0,0 +1,138 @@
+=begin
+                  Arachni
+  Copyright (c) 2010-2011 Tasos "Zapotek" Laskos <tasos.laskos@gmail.com>
+  This is free software; you can copy and distribute and modify
+  this program under the term of the GPL v2.0 License
+  (See LICENSE file for details)
+=end
+require 'digest/sha1'
+module Arachni
+module Modules
+#
+# Common directories discovery module.
+#
+# Looks for common, possibly sensitive, directories on the server.
+#
+# @author: Tasos "Zapotek" Laskos
+#                                      <tasos.laskos@gmail.com>
+#                                      <zapotek@segfault.gr>
+# @version: 0.1.4
+#
+# @see http://cwe.mitre.org/data/definitions/538.html
+#
+#
+class CommonDirectories < Arachni::Module::Base
+    include Arachni::Module::Utilities
+    def initialize( page )
+        super( page )
+    end
+    def prepare
+        # to keep track of the requests and not repeat them
+        @@__audited ||= Set.new
+        # our results array
+        @results = []
+        @@__directories ||=[]
+        return if !@@__directories.empty?
+        read_file( 'directories.txt' ) {
+            |file|
+            @@__directories << file
+        }
+    end
+    def run( )
+        path = get_path( @page.url )
+        return if @@__audited.include?( path )
+        print_status( "Scanning..." )
+        @@__directories.each {
+            |dirname|
+            url  = path + dirname + '/'
+            print_status( "Checking for #{url}" )
+            req  = @http.get( url, :train => true )
+            req.on_complete {
+                |res|
+                print_status( "Analyzing #{res.effective_url}" )
+                __log_results( res, dirname )
+            }
+        }
+        @@__audited << path
+    end
+    def self.info
+        {
+            :name           => 'CommonDirectories',
+            :description    => %q{Tries to find common directories on the server.},
+            :elements       => [ ],
+            :author         => 'Tasos "Zapotek" Laskos <tasos.laskos@gmail.com> ',
+            :version        => '0.1.4',
+            :references     => {},
+            :targets        => { 'Generic' => 'all' },
+            :issue   => {
+                :name        => %q{A common directory exists on the server.},
+                :description => %q{},
+                :tags        => [ 'path', 'directory', 'common' ],
+                :cwe         => '538',
+                :severity    => Issue::Severity::MEDIUM,
+                :cvssv2       => '',
+                :remedy_guidance    => '',
+                :remedy_code => '',
+            }
+        }
+    end
+    #
+    # Adds an issue to the @results array<br/>
+    # and outputs an "OK" message with the dirname and its url.
+    #
+    # @param  [Net::HTTPResponse]  res   the HTTP response
+    # @param  [String]  dirname   the discovered dirname
+    # @param  [String]  url   the url of the discovered file
+    #
+    def __log_results( res, dirname )
+        return if( res.code != 200 || @http.custom_404?( res ) )
+        url = res.effective_url
+        # append the result to the results array
+        @results << Issue.new( {
+            :url          => url,
+            :injected     => dirname,
+            :id           => dirname,
+            :elem         => Issue::Element::PATH,
+            :response     => res.body,
+            :headers      => {
+                :request    => res.request.headers,
+                :response   => res.headers,
+            }
+        }.merge( self.class.info ) )
+        # inform the user that we have a match
+        print_ok( "Found #{dirname} at " + url )
+        # register our results with the system
+        register_results( @results )
+    end
+end
+end
+end

data/modules/recon/common_directories/directories.txt ADDED

@@ -0,0 +1,265 @@
+_private
+_vti_bin
+cgi-bin
+cgi-sys
+mailman
+iishelp
+iisadmin
+uploader
+uploads
+tsweb
+query
+recent
+cache
+common
+wp-content
+shell
+readme
+main
+logfiles
+index
+default
+details
+example
+examples
+send
+settings
+feedback
+global
+globals
+guestbook
+admin_
+admin_login
+admin_logon
+adminlogon
+client
+clients
+cmd
+INSTALL_admin
+incomming
+upload
+backend
+webmail
+WebService
+aspnet
+Exchange
+usage
+WebApplication1
+WebApplication2
+WebApplication3
+sign
+signup
+scans
+webaccess
+restricted
+blog
+pics
+_logs
+_errors
+_tests
+.adm
+.admin
+~admin
+secret
+owa
+db2
+mrtg
+other
+accounts
+warez
+my
+cc
+creditcards
+contact
+press
+p0rn
+pron
+pron
+new%20folder
+New%20Folder
+oldfiles
+old_files
+sysbackup
+temp
+code
+secure
+secured
+staff
+src
+manage
+personal
+publish
+system
+work
+tests
+stuff
+mail
+email
+php
+jsp
+dev
+devel
+development
+tools
+share
+update
+updates
+util
+utils
+register
+search
+service
+services
+report
+reports
+purchase
+retail
+reseller
+app
+beta
+boot
+bug
+bugs
+buy
+auth
+authadmin
+import
+apps
+application
+access-log
+catalog
+cert
+crypto
+cfdocs
+classes
+cdrom
+css
+doc
+docs
+download
+downloads
+down
+excel
+forum
+etc
+help
+prv
+source
+backup
+bak
+old
+include
+inc
+info
+dat
+data
+test
+tmp
+save
+archive
+marketing
+pass
+passwd
+passwords
+password
+jdbc
+files
+site
+files
+sales
+log
+logs
+login
+logon
+logfile
+guests
+root
+htdocs
+account
+sql
+file
+setup
+website
+conf
+config
+install
+installer
+shop
+private
+fpadmin
+administrator
+intranet
+inventory
+webadmin
+employees
+accounting
+tree
+pages
+users
+access
+library
+database
+html
+bin
+Admin_files
+credit
+public
+dbase
+priv
+customer
+customers
+asp
+java
+jdbc
+jrun
+job
+zipfiles
+pw
+public
+admin
+new
+adm
+oracle
+odbc
+mall_log_files
+WebTrend
+order
+support
+msql
+user
+demo
+demos
+bkup
+mp3
+db
+ftp
+ibill
+incoming
+member
+members
+orders
+sample
+samples
+scripts
+stats
+sitestats
+support
+www
+errors
+siteadmin
+backups
+testing
+internal
+~home
+home
+~guest
+~nobody
+export
+testweb
+~log
+error_log
+ccbill
+network
+xamp
+xampp
+lamp