View Issue Details
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0005765||Kali Linux||[All Projects] Queued Tool Addition||public||2019-10-28 22:44||2020-06-17 14:57|
|Target Version||Fixed in Version|
|Summary||0005765: filegps - The only HTTP filename guesser for your webshells|
Recently I developed a tool that could be usefull to find how your webshell got renamed after the server-side script of the file uploader saved it.
The tool has been added to the official repositories of the following distros:
* Parrot OS
* BlackArch linux
I was wondering if it can be integrated in Kali too.
|Steps To Reproduce||Here you can find the tool: https://github.com/0blio/fileGPS|
Here there is the last release of the tool: https://github.com/0blio/fileGPS/releases/tag/0.4
|Additional Information||Here is a brief description of the tool from the documentation:|
When you upload a shell on a web-server using a file upload functionality, usually the file get renamed in various ways in order to prevent direct access to the file, RCE and file overwrite.
fileGPS is a tool that uses various techniques to find the new filename, after the server-side script renamed and saved it.
Some of the techniques used by fileGPS are:
* Various hash of the filename
* Various timestamps tricks
* Filename + PHP time() up to 5 minutes before the start of the script
* So many more
PoC.png (126,536 bytes)
PoC.png (126,536 bytes)
||Any updates about this?|
@kali-team, please could this be packaged up.
@author, If you want to help the packaging process, you can check the documentation here ~ https://www.kali.org/docs/development/public-packaging
||Ok! How do we proceed about this?|
|2019-10-28 22:44||0blio||New Issue|
|2019-10-28 22:44||0blio||File Added: PoC.png|
|2019-10-30 13:12||0blio||Note Added: 0011265|
|2019-12-02 13:18||g0tmi1k||Category||New Tool Requests => Queued Tool Addition|
|2019-12-02 13:18||g0tmi1k||Description Updated||View Revisions|
|2019-12-02 13:18||g0tmi1k||Steps to Reproduce Updated||View Revisions|
|2019-12-02 13:18||g0tmi1k||Additional Information Updated||View Revisions|
|2019-12-02 13:18||g0tmi1k||Note Added: 0011524|
|2019-12-07 22:46||0blio_||Note Added: 0011595|
|2020-01-06 13:06||g0tmi1k||Product Version||2019.3 =>|
|2020-01-06 13:07||g0tmi1k||Status||new => acknowledged|
|2020-01-06 13:13||g0tmi1k||Note Edited: 0011524||View Revisions|
|2020-06-17 14:57||g0tmi1k||Severity||feature => minor|