View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
0005765Kali LinuxQueued Tool Additionpublic2019-10-28 22:442020-06-17 14:57
Reporter0blio Assigned To 
PrioritynormalSeverityminorReproducibilityalways
Status acknowledgedResolutionopen 
Summary0005765: filegps - The only HTTP filename guesser for your webshells
Description

Hi all,

Recently I developed a tool that could be usefull to find how your webshell got renamed after the server-side script of the file uploader saved it.
The tool has been added to the official repositories of the following distros:

  • Parrot OS
  • BlackArch linux
  • BackBox

I was wondering if it can be integrated in Kali too.

Steps To Reproduce

Here you can find the tool: https://github.com/0blio/fileGPS
Here there is the last release of the tool: https://github.com/0blio/fileGPS/releases/tag/0.4

Additional Information

Here is a brief description of the tool from the documentation:

When you upload a shell on a web-server using a file upload functionality, usually the file get renamed in various ways in order to prevent direct access to the file, RCE and file overwrite.

fileGPS is a tool that uses various techniques to find the new filename, after the server-side script renamed and saved it.

Some of the techniques used by fileGPS are:

  • Various hash of the filename
  • Various timestamps tricks
  • Filename + PHP time() up to 5 minutes before the start of the script
  • So many more
Attached Files
PoC.png (126,536 bytes)   
PoC.png (126,536 bytes)   

Activities

0blio

0blio

2019-10-30 13:12

reporter   ~0011265

Any updates about this?
g0tmi1k

g0tmi1k

2019-12-02 13:18

administrator   ~0011524

Last edited: 2020-01-06 13:13

@kali-team, please could this be packaged up.
@author, If you want to help the packaging process, you can check the documentation here ~ https://www.kali.org/docs/development/public-packaging
0blio_

0blio_

2019-12-07 22:46

reporter   ~0011595

Ok! How do we proceed about this?

Issue History

Date Modified Username Field Change
2019-10-28 22:44 0blio New Issue
2019-10-28 22:44 0blio File Added: PoC.png
2019-10-30 13:12 0blio Note Added: 0011265
2019-12-02 13:18 g0tmi1k Category New Tool Requests => Queued Tool Addition
2019-12-02 13:18 g0tmi1k Description Updated
2019-12-02 13:18 g0tmi1k Steps to Reproduce Updated
2019-12-02 13:18 g0tmi1k Additional Information Updated
2019-12-02 13:18 g0tmi1k Note Added: 0011524
2019-12-07 22:46 0blio_ Note Added: 0011595
2020-01-06 13:06 g0tmi1k Product Version 2019.3 =>
2020-01-06 13:07 g0tmi1k Status new => acknowledged
2020-01-06 13:13 g0tmi1k Note Edited: 0011524
2020-06-17 14:57 g0tmi1k Severity feature => minor