Offensive Security Tool: DotDotPwn – The Directory Traversal Fuzzer
Reading Time: 2 Minutes
Offensive Security Tool: DotDotPwn – The Directory Traversal Fuzzer
DESCRIPTION
DotDotPwn – The Directory Traversal Fuzzer
It’s a very flexible intelligent fuzzer written by wireghoul to discover traversal directory vulnerabilities in software such as HTTP/FTP/TFTP servers, Web platforms such as CMSs, ERPs, Blogs, etc.
Also, it has a protocol-independent module to send the desired payload to the host and port specified. On the other hand, it also could be used in a scripting way using the STDOUT module.
It’s written in perl programming language and can be run either under OS X, *NIX or Windows platforms. It’s the first Mexican tool included in BackTrack Linux (BT4 R2).
Fuzzing modules supported in this version:
- HTTP
- HTTP URL
- FTP
- TFTP
- Payload (Protocol independent)
- STDOUT
*Whenever you find parameters in any URLS, especially after recon when performing bounty or pentesting, testing for Directory or Path Traveral attack with this tool is really effective, fast and accurate – especially when encoding is added within the requests sent to bypass several mechanisms.
See Also: Microsoft Exchange ProxyShell exploits used to deploy Babuk ransomware
REQUIREMENTS
- Perl (http://www.perl.org) Programmed and tested on Perl 5.8.8 and 5.10
- Nmap (http://www.nmap.org) Only if you plan to use the OS detection feature (needs root privileges)
Perl modules:
- Net::FTP
- TFTP (only required if fuzzing TFTP)
- Time::HiRes
- Socket
- IO::Socket
- Getopt::Std
You can easily install the missing modules doing the following as root:
# perl -MCPAN -e “install <MODULE_NAME>”
or
# cpan
cpan> install <MODULE_NAME>
See Also: Hacking stories – Operation Troy – How researchers linked the cyberattacks
See Also: Complete Offensive Security & Ethical Hacking Course
