View Issue Details

IDProjectCategoryView StatusLast Update
0005765Kali Linux[All Projects] New Tool Requestspublic2019-10-30 13:12
Reporter0blio Assigned To 
PrioritynormalSeverityfeatureReproducibilityalways
Status newResolutionopen 
Product Version2019.3 
Target VersionFixed in Version 
Summary0005765: filegps - The only HTTP filename guesser for your webshells
DescriptionHi all,

Recently I developed a tool that could be usefull to find how your webshell got renamed after the server-side script of the file uploader saved it.
The tool has been added to the official repositories of the following distros:
     * Parrot OS
     * BlackArch linux
     * BackBox

I was wondering if it can be integrated in Kali too.
Steps To ReproduceHere you can find the tool: https://github.com/0blio/fileGPS
Here there is the last release of the tool: https://github.com/0blio/fileGPS/releases/tag/0.4
Additional InformationHere is a brief description of the tool from the documentation:

When you upload a shell on a web-server using a file upload functionality, usually the file get renamed in various ways in order to prevent direct access to the file, RCE and file overwrite.

fileGPS is a tool that uses various techniques to find the new filename, after the server-side script renamed and saved it.

Some of the techniques used by fileGPS are:

   * Various hash of the filename
   * Various timestamps tricks
   * Filename + PHP time() up to 5 minutes before the start of the script
   * So many more

Activities

0blio

2019-10-28 22:44

reporter  

PoC.png (126,536 bytes)
PoC.png (126,536 bytes)

0blio

2019-10-30 13:12

reporter   ~0011265

Any updates about this?

Issue History

Date Modified Username Field Change
2019-10-28 22:44 0blio New Issue
2019-10-28 22:44 0blio File Added: PoC.png
2019-10-30 13:12 0blio Note Added: 0011265