home *** CD-ROM | disk | FTP | other *** search
/ H4CK3R 4 / hacker04 / 04_HACK04.ISO / xploits / neon / Neon_beta5.c
Encoding:
C/C++ Source or Header  |  2002-03-18  |  37.2 KB  |  956 lines
  1. /****************************************************************************
  2.  
  3.                            -(-  Neon beta5  -)-
  4.                            Cgi Security Scanner
  5.                                (358) Checks
  6.  
  7.  Instead of just making it as a single host scanner, as everyone else does.
  8.  I added so you can compile it as a iplist too if that is needed =)
  9.  
  10.        Host   Scanner    Compile : gcc Neon_beta5.c -o Neon -Wall      
  11.        Iplist Scanner    Compile : gcc Neon_beta5.c -o Neon -Wall -DMULTI
  12.          
  13.                  
  14.                    Usage: just run the file damit #!#%&#!      
  15.  
  16.  Shoutouts to: prizm and all the rest that have helped me out with adding 
  17.                new flaws to it before this public release.
  18.       
  19.  
  20.           NOTE! I dont answer any questions on how to use any of these flaws.
  21.  
  22. Changes from beta4:
  23.                    Added more cgi
  24.                    Fixed better output
  25.  
  26.                     Buffer0verfl0w Security www.b0f.com
  27.                    By axess ( axess@mail.com ) May-2000
  28.  
  29. *****************************************************************************/
  30.  
  31.  
  32.  
  33.  
  34.  
  35. #include <stdio.h>
  36. #include <unistd.h>
  37. #include <netinet/in.h>
  38. #include <netdb.h>
  39. #include <string.h>
  40. #include <sys/socket.h>
  41. #include <arpa/inet.h>
  42. #include <stdlib.h>
  43.  
  44. #define CGIFLAWS 359
  45. #ifdef MULTI
  46. void cgihost(char *);
  47. #endif
  48. struct sockaddr_in server;
  49. struct hostent *hp;
  50. char host[1024];
  51. char host2[1024];
  52. char out[100];
  53. char *get[400];
  54. char *name[400];
  55. char bufferhttp[1024];
  56. char buffer[1024];
  57. char *temp;
  58. char *ip_ptr;
  59. char *cgicheck;
  60. char msg[] = "200 OK";
  61. int s,count,antal,number;
  62. int f1,f2,f3,f4;
  63. int s1,s2,s3,s4;
  64. int ip;
  65. FILE *inf;
  66. FILE *of;
  67.  
  68. int main()
  69. {
  70.    system("clear");
  71.    printf("\n\n\n");
  72. for ( antal = 1 ; antal <= 28 ; antal++ )
  73.    putchar(' ');
  74.    printf("-(- Neon beta5 -)-\n");
  75. for ( antal = 1 ; antal <= 20 ; antal++ )
  76.    putchar(' ');
  77. #ifdef MULTI
  78.    printf(" Multi Host Cgi Security Scanner\n");
  79. #else
  80.    printf("Single Host Cgi Security Scanner\n");
  81. #endif
  82.  
  83. for ( antal = 1 ; antal <= 30 ; antal++ )
  84.    putchar(' ');
  85.    printf("(358) Checks\n\n");
  86. for ( antal = 1 ; antal <= 24 ; antal++ )
  87.    putchar(' ');
  88. #ifdef MULTI
  89.    printf("List : ");
  90.    scanf("%s",host);
  91.  
  92. if((inf = fopen(host, "r")) == NULL)
  93. {
  94.    printf("Error: input file does not exist!!!\n");
  95.    exit(1);
  96. }
  97.  
  98. for ( antal = 1 ; antal <= 21 ; antal++ )
  99.    putchar(' ');
  100.    printf("Logfile : ");
  101.    scanf("%s",out);
  102.  
  103. if((of = fopen(out, "w")) == NULL)
  104. {
  105.    printf("Error: Cant write to file!!!\n");
  106.    exit(1);
  107. }
  108.  
  109. while(fscanf(inf, "%s", host) != EOF)
  110. {
  111.    cgihost(host);
  112. }
  113.    return 0;
  114. }
  115.  
  116. void cgihost(char *target)
  117. {
  118. #else
  119.    printf("Host : ");
  120.    scanf("%s",host);
  121.     
  122. if((hp=gethostbyname(host)) == NULL)
  123. {
  124.    herror("gethostbyname");
  125.    exit(1);
  126. }
  127.  
  128. for ( antal = 1 ; antal <= 21 ; antal++ )
  129.    putchar(' ');
  130.    printf("Logfile : ");
  131.    scanf("%s",out);
  132.  
  133. if((of = fopen(out, "w")) == NULL)
  134. {
  135.    printf("Error: Cant write to file!!!\n");
  136.    exit(1);
  137. }
  138. #endif
  139.  
  140. get[1] = "GET /cgi-bin/whois_raw.cgi HTTP/1.0\n\n";
  141. get[2] = "GET /cgi-bin/phf HTTP/1.0\n\n";
  142. get[3] = "GET /cgi-bin/ls HTTP/1.0\n\n";
  143. get[4] = "GET /cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi HTTP/1.0\n\n";
  144. get[5] = "GET /cgi-bin/.fhp HTTP/1.0\n\n";
  145. get[6] = "GET /cgi-bin/Count.cgi HTTP/1.0\n\n";
  146. get[7] = "GET /cgi-bin/test-cgi HTTP/1.0\n\n";
  147. get[8] = "GET /cgi-bin/nph-test-cgi HTTP/1.0\n\n";
  148. get[9] = "GET /cgi-bin/php.cgi HTTP/1.0\n\n";
  149. get[10] = "GET /cgi-bin/php-cgi HTTP/1.0\n\n";
  150. get[11] = "GET /cgi-bin/handler HTTP/1.0\n\n";
  151. get[12] = "GET /cgi-bin/handler.cgi HTTP/1.0\n\n";
  152. get[13] = "GET /cgi-bin/minimal.exe HTTP/1.0\n\n";
  153. get[14] = "GET /cgi-bin/stats.prg HTTP/1.0\n\n";
  154. get[15] = "GET /cgi-bin/statsconfig HTTP/1.0\n\n";
  155. get[16] = "GET /cgi-bin/excite HTTP/1.0\n\n";
  156. get[17] = "GET /cgi-bin/webgais HTTP/1.0\n\n";
  157. get[18] = "GET /cgi-bin/websendmail HTTP/1.0\n\n";
  158. get[19] = "GET /cgi-bin/webdist.cgi HTTP/1.0\n\n";
  159. get[20] = "GET /cgi-bin/faxsurvey HTTP/1.0\n\n";
  160. get[21] = "GET /cgi-bin/dig.cgi HTTP/1.0\n\n";
  161. get[22] = "GET /cgi-bin/getdoc.cgi HTTP/1.0\n\n";
  162. get[23] = "GET /cgi-bin/webplus HTTP/1.0\n\n";
  163. get[24] = "GET /cgi-bin/bizdb1-search.cgi HTTP/1.0\n\n";
  164. get[25] = "GET /cgi-bin/htmlscript HTTP/1.0\n\n";
  165. get[26] = "GET /cgi-bin/pfdispaly.cgi HTTP/1.0\n\n";
  166. get[27] = "GET /cgi-bin/perl.exe HTTP/1.0\n\n";
  167. get[28] = "GET /cgi-bin/ppdscgi.exe HTTP/1.0\n\n";
  168. get[29] = "GET /cgi-bin/cart.pl HTTP/1.0\n\n";
  169. get[30] = "GET /cgi-bin/bigconf.cgi HTTP/1.0\n\n";
  170. get[31] = "GET /cgi-bin/wwwboard.pl HTTP/1.0\n\n";
  171. get[32] = "GET /cgi-bin/www-sql HTTP/1.0\n\n";
  172. get[33] = "GET /cgi-bin/htsearch HTTP/1.0\n\n";
  173. get[34] = "GET /cgi-bin/view-source HTTP/1.0\n\n";
  174. get[35] = "GET /cgi-bin/campas HTTP/1.0\n\n";
  175. get[36] = "GET /cgi-bin/aglimpse HTTP/1.0\n\n";
  176. get[37] = "GET /cgi-bin/get32.exe HTTP/1.0\n\n";
  177. get[38] = "GET /cgi-bin/man.sh HTTP/1.0\n\n";
  178. get[39] = "GET /cgi-bin/meta.pl HTTP/1.0\n\n";
  179. get[40] = "GET /cgi-bin/AT-admin.cgi HTTP/1.0\n\n";
  180. get[41] = "GET /cgi-bin/filemail.pl HTTP/1.0\n\n";
  181. get[42] = "GET /cgi-bin/maillist.pl HTTP/1.0\n\n";
  182. get[43] = "GET /cgi-bin/maillist.cgi HTTP/1.0\n\n";
  183. get[44] = "GET /cgi-bin/jj HTTP/1.0\n\n";
  184. get[45] = "GET /cgi-bin/info2www HTTP/1.0\n\n";
  185. get[46] = "GET /cgi-bin/files.pl HTTP/1.0\n\n";
  186. get[47] = "GET /cgi-bin/finger HTTP/1.0\n\n";
  187. get[48] = "GET /cgi-bin/finger?@localhost HTTP/1.0\n\n";
  188. get[49] = "GET /cgi-bin/bnbform.cgi HTTP/1.0\n\n";
  189. get[50] = "GET /cgi-bin/survey.cgi HTTP/1.0\n\n";
  190. get[51] = "GET /cgi-bin/AnyForm2 HTTP/1.0\n\n";
  191. get[52] = "GET /cgi-bin/textcounter.pl HTTP/1.0\n\n";
  192. get[53] = "GET /cgi-bin/classifieds.cgi HTTP/1.0\n\n";
  193. get[54] = "GET /cgi-bin/classified.cgi HTTP/1.0\n\n";
  194. get[55] = "GET /cgi-bin/environ.cgi HTTP/1.0\n\n";
  195. get[56] = "GET /cgi-bin/fpexplore.exe HTTP/1.0\n\n";
  196. get[57] = "GET /cgi-bin/imagemap.exe HTTP/1.0\n\n";
  197. get[58] = "GET /cgi-bin/cgitest.exe HTTP/1.0\n\n";
  198. get[59] = "GET /cgi-bin/anyboard.cgi HTTP/1.0\n\n";
  199. get[60] = "GET /cgi-bin/webbbs.cgi HTTP/1.0\n\n";
  200. get[61] = "GET /cgi-bin/visadmin.exe HTTP/1.0\n\n";
  201. get[62] = "GET /cgi-bin/nph-publish HTTP/1.0\n\n";
  202. get[63] = "GET /cgi-bin/perlshop.cgi HTTP/1.0\n\n";
  203. get[64] = "GET /cgi-bin/wrap HTTP/1.0\n\n";
  204. get[65] = "GET /cgi-bin/cgiwrap HTTP/1.0\n\n";
  205. get[66] = "GET /cgi-bin/cachemgr.cgi HTTP/1.0\n\n";
  206. get[67] = "GET /cgi-bin/query HTTP/1.0\n\n";
  207. get[68] = "GET /cgi-bin/rpm_query HTTP/1.0\n\n";
  208. get[69] = "GET /cgi-bin/ax.cgi HTTP/1.0\n\n";
  209. get[70] = "GET /cgi-bin/ax-admin.cgi HTTP/1.0\n\n";
  210. get[71] = "GET /cgi-bin/architext_query.pl HTTP/1.0\n\n";
  211. get[72] = "GET /cgi-bin/w3-msql/ HTTP/1.0\n\n";
  212. get[73] = "GET /cgi-bin/add_ftp.cgi HTTP/1.0\n\n";
  213. get[74] = "GET /cgi-bin/test.bat HTTP/1.0\n\n";
  214. get[75] = "GET /cgi-bin/input.bat HTTP/1.0\n\n";
  215. get[76] = "GET /cgi-bin/input2.bat HTTP/1.0\n\n";
  216. get[77] = "GET /cgi-bin/day5datacopier.cgi HTTP/1.0\n\n";
  217. get[78] = "GET /cgi-bin/day5datanotifier.cgi HTTP/1.0\n\n";
  218. get[79] = "GET /cgi-bin/whois.cgi HTTP/1.0\n\n";
  219. get[80] = "GET /cgi-bin/mlog.phtml HTTP/1.0\n\n";
  220. get[81] = "GET /cgi-bin/archie HTTP/1.0\n\n";
  221. get[82] = "GET /cgi-bin/bb-hist.sh HTTP/1.0\n\n";
  222. get[83] = "GET /cgi-bin/nph-error.pl HTTP/1.0\n\n";
  223. get[84] = "GET /cgi-bin/post_query HTTP/1.0\n\n";
  224. get[85] = "GET /cgi-bin/ppdscgi.exe HTTP/1.0\n\n";
  225. get[86] = "GET /cgi-bin/webmap.cgi HTTP/1.0\n\n";
  226. get[87] = "GET /cgi-bin/tigvote.cgi HTTP/1.0\n\n";
  227. get[88] = "GET /cgi-bin/webutils.pl HTTP/1.0\n\n";
  228. get[89] = "GET /cgi-bin/axs.cgi HTTP/1.0\n\n";
  229. get[90] = "GET /cgi-bin/responder.cgi HTTP/1.0\n\n";
  230. get[91] = "GET /cgi-bin/plusmail HTTP/1.0\n\n";
  231. get[92] = "GET /cgi-bin/passwd.txt HTTP/1.0\n\n";
  232. get[93] = "GET /cgi-bin/Cgitest.exe HTTP/1.0\n\n";
  233. get[94] = "GET /cgi-bin/GW5/GWWEB.EXE HTTP/1.0\n\n";
  234. get[95] = "GET /cgi-bin/webwho.pl HTTP/1.0\n\n";
  235. get[96] = "GET /cgi-bin/search.cgi HTTP/1.0\n\n";
  236. get[97] = "GET /cgi-bin/dbmlparser.exe HTTP/1.0\n\n";
  237. get[98] = "GET /cgi-bin/search/tidfinder.cgi HTTP/1.0\n\n";
  238. get[99] = "GET /cgi-bin/wa HTTP/1.0\n\n";
  239. get[100] = "GET /cgi-bin/tablebuild.pl HTTP/1.0\n\n";
  240. get[101] = "GET /cgi-bin/displayTC.pl HTTP/1.0\n\n";
  241. get[102] = "GET /cgi-bin/uptime HTTP/1.0\n\n";
  242. get[103] = "GET /cgi-bin/cvsweb/src/usr.bin/rdist/expand.c HTTP/1.0\n\n";
  243. get[104] = "GET /cgi-bin/c_download.cgi HTTP/1.0\n\n";
  244. get[105] = "GET /cgi-bin/download.cgi HTTP/1.0\n\n";
  245. get[106] = "GET /cgi-bin/program.pl HTTP/1.0\n\n";
  246. get[107] = "GET /cgi-bin/ntitar.pl HTTP/1.0\n\n";
  247. get[108] = "GET /cgi-bin/enter.cgi HTTP/1.0\n\n";
  248. get[109] = "GET /cgi-bin/test.html HTTP/1.0\n\n";
  249. get[110] = "GET /cgi-bin/test-unix.html HTTP/1.0\n\n";
  250. get[111] = "GET /cgi-bin/printenv HTTP/1.0\n\n";
  251. get[112] = "GET /cgi-bin/dasp/fm_shell.asp HTTP/1.0\n\n";
  252. get[113] = "GET /cgi-bin/cgiback.cgi HTTP/1.0\n\n";
  253. get[114] = "GET /cgi-bin/unlg1.1 HTTP/1.0\n\n";
  254. get[115] = "GET /cgi-bin/unlg1.2 HTTP/1.0\n\n";
  255. get[116] = "GET /cgi-bin/gH.cgi HTTP/1.0\n\n";
  256. get[117] = "GET /cgi-bin/rwwwshell.pl HTTP/1.0\n\n";
  257. get[118] = "GET /cgi-bin/php HTTP/1.0\n\n";
  258. get[119] = "GET /cgi-bin/perl HTTP/1.0\n\n";
  259. get[120] = "GET /cgi-bin/wwwboard.cgi HTTP/1.0\n\n";
  260. get[121] = "GET /cgi-bin/guestbook.cgi HTTP/1.0\n\n";
  261. get[122] = "GET /cgi-bin/guestbook.pl HTTP/1.0\n\n";
  262. get[123] = "GET /cgi-bin/passwd HTTP/1.0\n\n";
  263. get[124] = "GET /cgi-bin/passwd.txt HTTP/1.0\n\n";
  264. get[125] = "GET /cgi-bin/password HTTP/1.0\n\n";
  265. get[126] = "GET /cgi-bin/password.txt HTTP/1.0\n\n";
  266. get[127] = "GET /cgi-bin/flexform.cgi HTTP/1.0\n\n";
  267. get[128] = "GET /cgi-bin/MachineInfo HTTP/1.0\n\n";
  268. get[129] = "GET /cgi-bin/lwgate HTTP/1.0\n\n";
  269. get[130] = "GET /cgi-bin/lwgate.cgi HTTP/1.0\n\n";
  270. get[131] = "GET /cgi-bin/nlog-smb.cgi HTTP/1.0\n\n";
  271. get[132] = "GET /cgi-bin/icat HTTP/1.0\n\n";
  272. get[133] = "GET /cgi-bin/tst.bat HTTP/1.0\n\n";
  273. get[134] = "GET /cgi-bin/infosrch.cgi HTTP/1.0\n\n";
  274. get[135] = "GET /cgi-bin/webwho.pl HTTP/1.0\n\n";
  275. get[136] = "GET /cgi-bin/FormHandler.cgi HTTP/1.0\n\n";
  276. get[137] = "GET /cgi-bin/cgi-lib.pl HTTP/1.0\n\n";
  277. get[138] = "GET /com1 HTTP/1.0\n\n";
  278. get[139] = "GET /com2 HTTP/1.0\n\n";
  279. get[140] = "GET /com3 HTTP/1.0\n\n";
  280. get[141] = "GET /con HTTP/1.0\n\n";
  281. get[142] = "GET /_vti_inf.html HTTP/1.0\n\n";
  282. get[143] = "GET /_vti_pvt/service.pwd HTTP/1.0\n\n";
  283. get[144] = "GET /_vti_pvt/users.pwd HTTP/1.0\n\n";
  284. get[145] = "GET /_vti_pvt/authors.pwd HTTP/1.0\n\n";
  285. get[146] = "GET /_vti_pvt/administrators.pwd HTTP/1.0\n\n";
  286. get[147] = "GET /_vti_pvt/writeto.cnf HTTP/1.0\n\n";
  287. get[148] = "GET /_vti_pvt/svcacl.cnf HTTP/1.0\n\n";
  288. get[149] = "GET /_vti_pvt/services.cnf HTTP/1.0\n\n";
  289. get[150] = "GET /_vti_pvt/service.stp HTTP/1.0\n\n";
  290. get[151] = "GET /_vti_pvt/service.cnf HTTP/1.0\n\n";
  291. get[152] = "GET /_vti_pvt/access.cnf HTTP/1.0\n\n";
  292. get[153] = "GET /_vti_bin/shtml.dll HTTP/1.0\n\n";
  293. get[154] = "GET /_vti_bin/shtml.exe HTTP/1.0\n\n";
  294. get[155] = "GET /_vti_bin/fpcount.exe HTTP/1.0\n\n";
  295. get[156] = "GET /_vti_bin/_vti_adm/admin.dll HTTP/1.0\n\n";
  296. get[157] = "GET /_vti_bin/_vti_aut/author.dll HTTP/1.0\n\n";
  297. get[158] = "GET /_vti_bin/_vti_aut/dvwssr.dll HTTP/1.0\n\n";
  298. get[159] = "GET /cgi-dos/args.bat HTTP/1.0\n\n";
  299. get[160] = "GET /cgi-dos/args.cmd HTTP/1.0\n\n";
  300. get[161] = "GET /cgi-win/uploader.exe HTTP/1.0\n\n";
  301. get[162] = "GET /cgi-shl/win-c-sample.exe HTTP/1.0\n\n";
  302. get[163] = "GET /scripts/c32web.exe HTTP/1.0\n\n";
  303. get[164] = "GET /scripts/cart32.exe HTTP/1.0\n\n";
  304. get[165] = "GET /scripts/issadmin/bdir.htr HTTP/1.0\n\n";
  305. get[166] = "GET /scripts/CGImail.exe HTTP/1.0\n\n";
  306. get[167] = "GET /scripts/tools/newdsn.exe HTTP/1.0\n\n";
  307. get[168] = "GET /scripts/fpcount.exe HTTP/1.0\n\n";
  308. get[169] = "GET /scripts/no-such-file.pl HTTP/1.0\n\n";
  309. get[170] = "GET /scripts/counter.exe HTTP/1.0\n\n";
  310. get[171] = "GET /scripts/uploadn.asp HTTP/1.0\n\n";
  311. get[172] = "GET /scripts/uploadx.asp HTTP/1.0\n\n";
  312. get[173] = "GET /scripts/upload.asp HTTP/1.0\n\n";
  313. get[174] = "GET /scripts/repost.asp HTTP/1.0\n\n";
  314. get[175] = "GET /scripts/postinfo.asp HTTP/1.0\n\n";
  315. get[176] = "GET /scripts/run.exe HTTP/1.0\n\n";
  316. get[177] = "GET /scripts/convert.bas HTTP/1.0\n\n";
  317. get[178] = "GET /scripts/iisadmin/ism.dll HTTP/1.0\n\n";
  318. get[179] = "GET /scripts/tools/getdrvrs.exe HTTP/1.0\n\n";
  319. get[180] = "GET /scripts/tools/dsnform.exe HTTP/1.0\n\n";
  320. get[181] = "GET /scripts/samples/search/webhits.exe HTTP/1.0\n\n";
  321. get[182] = "GET /scripts/../../cmd.exe HTTP/1.0\n\n";
  322. get[183] = "GET /scripts/webbbs.exe HTTP/1.0\n\n";
  323. get[184] = "GET /scripts/samples/ctguestb.idc HTTP/1.0\n\n";
  324. get[185] = "GET /scripts/samples/details.idc HTTP/1.0\n\n";
  325. get[186] = "GET /scripts/tools/getdrvs.exe HTTP/1.0\n\n";
  326. get[187] = "GET /scripts/pu3.pl HTTP/1.0\n\n";
  327. get[188] = "GET /scripts/proxy/w3proxy.dll HTTP/1.0\n\n";
  328. get[189] = "GET /scripts/cpshost.dll HTTP/1.0\n\n";
  329. get[190] = "GET /scripts/Fpadmcgi.exe HTTP/1.0\n\n";
  330. get[191] = "GET /scripts/iisadmin/bdir.htr HTTP/1.0\n\n";
  331. get[192] = "GET /scripts/iisadmin/samples/ctgestb.htx HTTP/1.0\n\n";
  332. get[193] = "GET /scripts/iisadmin/samples/ctgestb.idc HTTP/1.0\n\n";
  333. get[194] = "GET /scripts/iisadmin/samples/details.htx HTTP/1.0\n\n";
  334. get[195] = "GET /scripts/iisadmin/samples/details.idc HTTP/1.0\n\n";
  335. get[196] = "GET /scripts/iisadmin/samples/query.htx HTTP/1.0\n\n";
  336. get[197] = "GET /scripts/iisadmin/samples/query.idc HTTP/1.0\n\n";
  337. get[198] = "GET /scripts/iisadmin/samples/register.htx HTTP/1.0\n\n";
  338. get[199] = "GET /scripts/iisadmin/samples/register.idc HTTP/1.0\n\n";
  339. get[200] = "GET /scripts/iisadmin/samples/sample.htx HTTP/1.0\n\n";
  340. get[201] = "GET /scripts/iisadmin/samples/sample.idc HTTP/1.0\n\n";
  341. get[202] = "GET /scripts/iisadmin/samples/sample2.htx HTTP/1.0\n\n";
  342. get[203] = "GET /scripts/iisadmin/samples/viewbook.htx HTTP/1.0\n\n";
  343. get[204] = "GET /scripts/iisadmin/samples/viewbook.idc HTTP/1.0\n\n";
  344. get[205] = "GET /scripts/iisadmin/tools/ct.htx HTTP/1.0\n\n";
  345. get[206] = "GET /scripts/iisadmin/tools/ctss.idc HTTP/1.0\n\n";
  346. get[207] = "GET /scripts/iisadmin/tools/dsnform.exe HTTP/1.0\n\n";
  347. get[208] = "GET /scripts/iisadmin/tools/getdrvrs.exe HTTP/1.0\n\n";
  348. get[209] = "GET /scripts/iisadmin/tools/mkilog.exe HTTP/1.0\n\n";
  349. get[210] = "GET /scripts/iisadmin/tools/newdsn.exe HTTP/1.0\n\n";
  350. get[211] = "GET /WebShop/templates/cc.txt HTTP/1.0\n\n";
  351. get[212] = "GET /WebShop/logs/cc.txt HTTP/1.0\n\n";
  352. get[213] = "GET /WebShop/logs/ck.log HTTP/1.0\n\n";
  353. get[214] = "GET /config/orders.txt HTTP/1.0\n\n";
  354. get[215] = "GET /config/import.txt HTTP/1.0\n\n";
  355. get[216] = "GET /config/checks.txt HTTP/1.0\n\n";
  356. get[217] = "GET /orders/order.log HTTP/1.0\n\n";
  357. get[218] = "GET /orders/import.txt HTTP/1.0\n\n";
  358. get[219] = "GET /orders/checks.txt HTTP/1.0\n\n";
  359. get[220] = "GET /orders/orders.txt HTTP/1.0\n\n";
  360. get[221] = "GET /Orders/order.log HTTP/1.0\n\n";
  361. get[222] = "GET /order/order.log HTTP/1.0\n\n";
  362. get[223] = "GET /cfdocs/expelval/openfile.cfm HTTP/1.0\n\n";
  363. get[224] = "GET /cfdocs/expelval/exprcalc.cfm HTTP/1.0\n\n";
  364. get[225] = "GET /cfdocs/expelval/displayopenedfile.cfm HTTP/1.0\n\n";
  365. get[226] = "GET /cfdocs/expelval/sendmail.cfm HTTP/1.0\n\n";
  366. get[227] = "GET /cfdocs/cfmlsyntaxcheck.cfm HTTP/1.0\n\n";
  367. get[228] = "GET /cfdocs/snippets/fileexist.cfm HTTP/1.0\n\n";
  368. get[229] = "GET /cfdocs/zero.cfm HTTP/1.0\n\n";
  369. get[230] = "GET /cfdocs/root.cfm HTTP/1.0\n\n";
  370. get[231] = "GET /cfdocs/expressions.cfm HTTP/1.0\n\n";
  371. get[232] = "GET /cfdocs/toxic.cfm HTTP/1.0\n\n";
  372. get[233] = "GET /cfdocs/mole.cfm HTTP/1.0\n\n";
  373. get[234] = "GET /cfdocs/exampleapp/publish/admin/addcontent.cfm HTTP/1.0\n\n";
  374. get[235] = "GET /cfdocs/exampleapp/email/getfile.cfm HTTP/1.0\n\n";
  375. get[236] = "GET /cfdocs/exampleapp/publish/admin/application.cfm HTTP/1.0\n\n";
  376. get[237] = "GET /cfdocs/exampleapp/email/application.cfm HTTP/1.0\n\n";
  377. get[238] = "GET /cfdocs/exampleapp/docs/sourcewindow.cfm HTTP/1.0\n\n";
  378. get[239] = "GET /cfdocs/examples/parks/detail.cfm HTTP/1.0\n\n";
  379. get[240] = "GET /cfdocs/examples/cvbeans/beaninfo.cfm HTTP/1.0\n\n";
  380. get[241] = "GET /cfdocs/cfmlsyntaxcheck.cfm HTTP/1.0\n\n";
  381. get[242] = "GET /cfdocs/snippets/viewexample.cfm HTTP/1.0\n\n";
  382. get[243] = "GET /cfdocs/snippets/evaluate.cfm HTTP/1.0\n\n";
  383. get[244] = "GET /cfappman/index.cfm HTTP/1.0\n\n";
  384. get[245] = "GET /cfusion/cfapps/forums/forums_.mdb HTTP/1.0\n\n";
  385. get[246] = "GET /cfusion/cfapps/security/realm_.mdb HTTP/1.0\n\n";
  386. get[247] = "GET /cfusion/cfapps/forums/data/forums.mdb HTTP/1.0\n\n";
  387. get[248] = "GET /cfusion/cfapps/security/data/realm.mdb HTTP/1.0\n\n";
  388. get[249] = "GET /cfusion/database/cfexamples.mdb HTTP/1.0\n\n";
  389. get[250] = "GET /cfusion/database/cfsnippets.mdb HTTP/1.0\n\n";
  390. get[251] = "GET /cfusion/database/smpolicy.mdb HTTP/1.0\n\n";
  391. get[252] = "GET /cfusion/database/cypress.mdb HTTP/1.0\n\n";
  392. get[253] = "GET /_private/registrations.txt HTTP/1.0\n\n";
  393. get[254] = "GET /_private/registrations.htm HTTP/1.0\n\n";
  394. get[255] = "GET /_private/register.txt HTTP/1.0\n\n";
  395. get[256] = "GET /_private/register.htm HTTP/1.0\n\n";
  396. get[257] = "GET /_private/orders.txt HTTP/1.0\n\n";
  397. get[258] = "GET /_private/orders.htm HTTP/1.0\n\n";
  398. get[259] = "GET /_private/form_results.htm HTTP/1.0\n\n";
  399. get[260] = "GET /_private/form_results.txt HTTP/1.0\n\n";
  400. get[261] = "GET /admisapi/fpadmin.htm HTTP/1.0\n\n";
  401. get[262] = "GET /iissamples/exair/howitworks/codebrws.asp HTTP/1.0\n\n";
  402. get[263] = "GET /iissamples/sdk/asp/docs/codebrws.asp HTTP/1.0\n\n";
  403. get[264] = "GET /iissamples/iissamples/query.asp HTTP/1.0\n\n";
  404. get[265] = "GET /iissamples/exair/search/advsearch.asp HTTP/1.0\n\n";
  405. get[266] = "GET /iisadmpwd/achg.htr HTTP/1.0\n\n";
  406. get[267] = "GET /iisadmpwd/aexp.htr HTTP/1.0\n\n";
  407. get[268] = "GET /iisadmpwd/aexp2.htr HTTP/1.0\n\n";
  408. get[269] = "GET /iisadmpwd/aexp2b.htr HTTP/1.0\n\n";
  409. get[270] = "GET /iisadmpwd/aexp3.htr HTTP/1.0\n\n";
  410. get[271] = "GET /iisadmpwd/aexp4.htr HTTP/1.0\n\n";
  411. get[272] = "GET /iisadmpwd/aexp4b.htr HTTP/1.0\n\n";
  412. get[273] = "GET /iisadmpwd/anot.htr HTTP/1.0\n\n";
  413. get[274] = "GET /iisadmpwd/anot3.htr HTTP/1.0\n\n";
  414. get[275] = "GET /pw/storemgr.pw HTTP/1.0\n\n";
  415. get[276] = "GET /config/mountain.cfg HTTP/1.0\n\n";
  416. get[277] = "GET /orders/mountain.cfg HTTP/1.0\n\n";
  417. get[278] = "GET /quikstore.cfg HTTP/1.0\n\n";
  418. get[279] = "GET /PDG_Cart/shopper.conf HTTP/1.0\n\n";
  419. get[280] = "GET /search97.vts HTTP/1.0\n\n";
  420. get[281] = "GET /carbo.dll HTTP/1.0\n\n";
  421. get[282] = "GET /msadc/Samples/SELECTOR/showcode.asp HTTP/1.0\n\n";
  422. get[283] = "GET /adsamples/config/site.csc HTTP/1.0\n\n";
  423. get[284] = "GET /Admin_files/order.log HTTP/1.0\n\n";
  424. get[285] = "GET /mall_log_files/order.log HTTP/1.0\n\n";
  425. get[286] = "GET /PDG_Cart/order.log HTTP/1.0\n\n";
  426. get[287] = "GET /doc HTTP/1.0\n\n";
  427. get[288] = "GET /.html/............./config.sys HTTP/1.0\n\n";
  428. get[289] = "GET /ssi/envout.bat HTTP/1.0\n\n";
  429. get[290] = "GET /~root HTTP/1.0\n\n";
  430. get[291] = "GET /server%20logfile HTTP/1.0\n\n";
  431. get[292] = "GET /....../autoexec.bat HTTP/1.0\n\n";
  432. get[293] = "GET /perl/files.pl HTTP/1.0\n\n";
  433. get[294] = "GET /lpt HTTP/1.0\n\n";
  434. get[295] = "GET /AdvWorks/equipment/catalog_type.asp HTTP/1.0\n\n";
  435. get[296] = "GET /ASPSamp/AdvWorks/equipment/catalog_type.asp HTTP/1.0\n\n";
  436. get[297] = "GET /admin.php3 HTTP/1.0\n\n";
  437. get[298] = "GET /code.php3 HTTP/1.0\n\n";
  438. get[299] = "GET /bb-dnbd/bb-hist.sh HTTP/1.0\n\n";
  439. get[300] = "GET /domcfg.nsf HTTP/1.0\n\n";
  440. get[301] = "GET /today.nsf HTTP/1.0\n\n";
  441. get[302] = "GET /names.nsf HTTP/1.0\n\n";
  442. get[303] = "GET /catalog.nsf HTTP/1.0\n\n";
  443. get[304] = "GET /log.nsf HTTP/1.0\n\n";
  444. get[305] = "GET /domlog.nsf HTTP/1.0\n\n";
  445. get[306] = "GET /database.nsf HTTP/1.0\n\n";
  446. get[307] = "GET /secure/.htaccess HTTP/1.0\n\n";
  447. get[308] = "GET /secure/.wwwacl HTTP/1.0\n\n";
  448. get[309] = "GET /WebSTAR HTTP/1.0\n\n";
  449. get[310] = "GET /msadc/msadcs.dll HTTP/1.0\n\n";
  450. get[311] = "GET /reviews/newpro.cgi HTTP/1.0\n\n";
  451. get[312] = "GET /_AuthChangeUrl? HTTP/1.0\n\n";
  452. get[313] = "GET /........./autoexec.bat HTTP/1.0\n\n";
  453. get[314] = "GET /.html/............/autoexec.bat HTTP/1.0\n\n";
  454. get[315] = "GET /......../ HTTP/1.0\n\n";
  455. get[316] = "GET /eatme.idc HTTP/1.0\n\n";
  456. get[317] = "GET /eatme.ida HTTP/1.0\n\n";
  457. get[318] = "GET /eatme.pl HTTP/1.0\n\n";
  458. get[319] = "GET /eatme.idq HTTP/1.0\n\n";
  459. get[320] = "GET /eatme.idw HTTP/1.0\n\n";
  460. get[321] = "GET /default.asp HTTP/1.0\n\n";
  461. get[322] = "GET /default.asp::$DATA HTTP/1.0\n\n";
  462. get[323] = "GET /default.asp. HTTP/1.0\n\n";
  463. get[324] = "GET /samples/ HTTP/1.0\n\n";
  464. get[325] = "GET /photoads/cgi-bin/env.cgi HTTP/1.0\n\n";
  465. get[326] = "GET /photoads/cgi-bin/ HTTP/1.0\n\n";
  466. get[327] = "GET /photoads/ HTTP/1.0\n\n";
  467. get[328] = "GET /session/admnlogin HTTP/1.0\n\n";
  468. get[329] = "GET /session/adminlogin?RCpage=/sysadmin/index.stm HTTP/1.0\n\n";
  469. get[330] = "GET /samples/search/queryhit.htm HTTP/1.0\n\n";
  470. get[331] = "GET /msadc/msadcs.dll HTTP/1.0\n\n";
  471. get[332] = "GET /publisher/|publisher HTTP/1.0\n\n";
  472. get[333] = "GET /PSUser/PSCOErrPage.htm HTTP/1.0\n\n";
  473. get[334] = "GET ../../boot.ini HTTP/1.0\n\n";
  474. get[335] = "GET ../.. HTTP/1.0\n\n";
  475. get[336] = "GET /aux HTTP/1.0\n\n";
  476. get[337] = "GET /status HTTP/1.0\n\n";
  477. get[338] = "GET /status.cgi HTTP/1.0\n\n";
  478. get[339] = "GET /log HTTP/1.0\n\n";
  479. get[340] = "GET /stats HTTP/1.0\n\n";
  480. get[341] = "GET /manage/cgi/cgiproc HTTP/1.0\n\n";
  481. get[342] = "GET /bb-hist.sh HTTP/1.0\n\n";
  482. get[343] = "GET /DataBase/ HTTP/1.0\n\n";
  483. get[344] = "GET /scripts/wa.exe HTTP/1.0\n\n";
  484. get[345] = "GET /cgi-bin/UltraBoard.pl HTTP/1.0\n\n";
  485. get[346] = "GET /cgi-bin/UltraBoard.cgi HTTP/1.0\n\n";
  486. get[347] = "GET /piranha/secure/passwd.php3 HTTP/1.0\n\n";
  487. get[348] = "GET /wwwboard/passwd.txt HTTP/1.0\n\n";
  488. get[349] = "GET /cgi-bin/sojourn.cgi HTTP/1.0\n\n";
  489. get[350] = "GET /cgi-bin/ews HTTP/1.0\n\n";
  490. get[351] = "GET /cgi-bin/dumpenv HTTP/1.0\n\n";
  491. get[352] = "GET /cgi-bin/dfire.cgi HTTP/1.0\n\n";
  492. get[353] = "GET /cgi-bin/spin_client.cgi HTTP/1.0\n\n";
  493. get[354] = "GET /ss HTTP/1.0\n\n";
  494. get[355] = "GET /cgi-bin/echo.bat HTTP/1.0\n\n";
  495. get[356] = "GET /cgi-bin/hello.bat HTTP/1.0\n\n";
  496. get[357] = "GET /scripts/dbman/db.cgi HTTP/1.0\n\n";
  497. get[358] = "GET /cgi-bin/makechanges/easysteps/easysteps.pl HTTP/1.0\n\n";
  498.  
  499. name[1] = "/cgi-bin/whois_raw.cgi";
  500. name[2] = "/cgi-bin/phf";
  501. name[3] = "/cgi-bin/ls";
  502. name[4] = "/cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi";
  503. name[5] = "/cgi-bin/.fhp";
  504. name[6] = "/cgi-bin/Count.cgi";
  505. name[7] = "/cgi-bin/test-cgi";
  506. name[8] = "/cgi-bin/nph-test-cgi";
  507. name[9] = "/cgi-bin/php.cgi";
  508. name[10] = "/cgi-bin/php-cgi";
  509. name[11] = "/cgi-bin/handler";
  510. name[12] = "/cgi-bin/handler.cgi";
  511. name[13] = "/cgi-bin/minimal.exe";
  512. name[14] = "/cgi-bin/stats.prg";
  513. name[15] = "/cgi-bin/statsconfig";
  514. name[16] = "/cgi-bin/excite";
  515. name[17] = "/cgi-bin/webgais";
  516. name[18] = "/cgi-bin/websendmail";
  517. name[19] = "/cgi-bin/webdist.cgi";
  518. name[20] = "/cgi-bin/faxsurvey";
  519. name[21] = "/cgi-bin/dig.cgi";
  520. name[22] = "/cgi-bin/namedoc.cgi";
  521. name[23] = "/cgi-bin/webplus";
  522. name[24] = "/cgi-bin/bizdb1-search.cgi";
  523. name[25] = "/cgi-bin/htmlscript";
  524. name[26] = "/cgi-bin/pfdispaly.cgi";
  525. name[27] = "/cgi-bin/perl.exe";
  526. name[28] = "/cgi-bin/ppdscgi.exe";
  527. name[29] = "/cgi-bin/cart.pl";
  528. name[30] = "/cgi-bin/bigconf.cgi";
  529. name[31] = "/cgi-bin/wwwboard.pl";
  530. name[32] = "/cgi-bin/www-sql";
  531. name[33] = "/cgi-bin/htsearch";
  532. name[34] = "/cgi-bin/view-source";
  533. name[35] = "/cgi-bin/campas";
  534. name[36] = "/cgi-bin/aglimpse";
  535. name[37] = "/cgi-bin/name32.exe";
  536. name[38] = "/cgi-bin/man.sh";
  537. name[39] = "/cgi-bin/meta.pl";
  538. name[40] = "/cgi-bin/AT-admin.cgi";
  539. name[41] = "/cgi-bin/filemail.pl";
  540. name[42] = "/cgi-bin/maillist.pl";
  541. name[43] = "/cgi-bin/maillist.cgi";
  542. name[44] = "/cgi-bin/jj";
  543. name[45] = "/cgi-bin/info2www";
  544. name[46] = "/cgi-bin/files.pl";
  545. name[47] = "/cgi-bin/finger";
  546. name[48] = "/cgi-bin/finger?@localhost";
  547. name[49] = "/cgi-bin/bnbform.cgi";
  548. name[50] = "/cgi-bin/survey.cgi";
  549. name[51] = "/cgi-bin/AnyForm2";
  550. name[52] = "/cgi-bin/textcounter.pl";
  551. name[53] = "/cgi-bin/classifieds.cgi";
  552. name[54] = "/cgi-bin/classified.cgi";
  553. name[55] = "/cgi-bin/environ.cgi";
  554. name[56] = "/cgi-bin/fpexplore.exe";
  555. name[57] = "/cgi-bin/imagemap.exe";
  556. name[58] = "/cgi-bin/cgitest.exe";
  557. name[59] = "/cgi-bin/anyboard.cgi";
  558. name[60] = "/cgi-bin/webbbs.cgi";
  559. name[61] = "/cgi-bin/visadmin.exe";
  560. name[62] = "/cgi-bin/nph-publish";
  561. name[63] = "/cgi-bin/perlshop.cgi";
  562. name[64] = "/cgi-bin/wrap";
  563. name[65] = "/cgi-bin/cgiwrap";
  564. name[66] = "/cgi-bin/cachemgr.cgi";
  565. name[67] = "/cgi-bin/query";
  566. name[68] = "/cgi-bin/rpm_query";
  567. name[69] = "/cgi-bin/ax.cgi";
  568. name[70] = "/cgi-bin/ax-admin.cgi";
  569. name[71] = "/cgi-bin/architext_query.pl";
  570. name[72] = "/cgi-bin/w3-msql/";
  571. name[73] = "/cgi-bin/add_ftp.cgi";
  572. name[74] = "/cgi-bin/test.bat";
  573. name[75] = "/cgi-bin/input.bat";
  574. name[76] = "/cgi-bin/input2.bat";
  575. name[77] = "/cgi-bin/day5datacopier.cgi";
  576. name[78] = "/cgi-bin/day5datanotifier.cgi";
  577. name[79] = "/cgi-bin/whois.cgi";
  578. name[80] = "/cgi-bin/mlog.phtml";
  579. name[81] = "/cgi-bin/archie";
  580. name[82] = "/cgi-bin/bb-hist.sh";
  581. name[83] = "/cgi-bin/nph-error.pl";
  582. name[84] = "/cgi-bin/post_query";
  583. name[85] = "/cgi-bin/ppdscgi.exe";
  584. name[86] = "/cgi-bin/webmap.cgi";
  585. name[87] = "/cgi-bin/tigvote.cgi";
  586. name[88] = "/cgi-bin/webutils.pl";
  587. name[89] = "/cgi-bin/axs.cgi";
  588. name[90] = "/cgi-bin/responder.cgi";
  589. name[91] = "/cgi-bin/plusmail";
  590. name[92] = "/cgi-bin/passwd.txt";
  591. name[93] = "/cgi-bin/Cgitest.exe";
  592. name[94] = "/cgi-bin/GW5/GWWEB.EXE";
  593. name[95] = "/cgi-bin/webwho.pl";
  594. name[96] = "/cgi-bin/search.cgi";
  595. name[97] = "/cgi-bin/dbmlparser.exe";
  596. name[98] = "/cgi-bin/search/tidfinder.cgi";
  597. name[99] = "/cgi-bin/wa";
  598. name[100] = "/cgi-bin/tablebuild.pl";
  599. name[101] = "/cgi-bin/displayTC.pl";
  600. name[102] = "/cgi-bin/uptime";
  601. name[103] = "/cgi-bin/cvsweb/src/usr.bin/rdist/expand.c";
  602. name[104] = "/cgi-bin/c_download.cgi";
  603. name[105] = "/cgi-bin/download.cgi";
  604. name[106] = "/cgi-bin/program.pl";
  605. name[107] = "/cgi-bin/ntitar.pl";
  606. name[108] = "/cgi-bin/enter.cgi";
  607. name[109] = "/cgi-bin/test.html";
  608. name[110] = "/cgi-bin/test-unix.html";
  609. name[111] = "/cgi-bin/printenv";
  610. name[112] = "/cgi-bin/dasp/fm_shell.asp";
  611. name[113] = "/cgi-bin/cgiback.cgi";
  612. name[114] = "/cgi-bin/unlg1.1";
  613. name[115] = "/cgi-bin/unlg1.2";
  614. name[116] = "/cgi-bin/gH.cgi";
  615. name[117] = "/cgi-bin/rwwwshell.pl";
  616. name[118] = "/cgi-bin/php";
  617. name[119] = "/cgi-bin/perl";
  618. name[120] = "/cgi-bin/wwwboard.cgi";
  619. name[121] = "/cgi-bin/guestbook.cgi";
  620. name[122] = "/cgi-bin/guestbook.pl";
  621. name[123] = "/cgi-bin/passwd";
  622. name[124] = "/cgi-bin/passwd.txt";
  623. name[125] = "/cgi-bin/password";
  624. name[126] = "/cgi-bin/password.txt";
  625. name[127] = "/cgi-bin/flexform.cgi";
  626. name[128] = "/cgi-bin/MachineInfo";
  627. name[129] = "/cgi-bin/lwgate";
  628. name[130] = "/cgi-bin/lwgate.cgi";
  629. name[131] = "/cgi-bin/nlog-smb.cgi";
  630. name[132] = "/cgi-bin/icat";
  631. name[133] = "/cgi-bin/tst.bat";
  632. name[134] = "/cgi-bin/infosrch.cgi";
  633. name[135] = "/cgi-bin/webwho.pl";
  634. name[136] = "/cgi-bin/FormHandler.cgi";
  635. name[137] = "/cgi-bin/cgi-lib.pl";
  636. name[138] = "/com1";
  637. name[139] = "/com2";
  638. name[140] = "/com3";
  639. name[141] = "/con";
  640. name[142] = "/_vti_inf.html";
  641. name[143] = "/_vti_pvt/service.pwd";
  642. name[144] = "/_vti_pvt/users.pwd";
  643. name[145] = "/_vti_pvt/authors.pwd";
  644. name[146] = "/_vti_pvt/administrators.pwd";
  645. name[147] = "/_vti_pvt/writeto.cnf";
  646. name[148] = "/_vti_pvt/svcacl.cnf";
  647. name[149] = "/_vti_pvt/services.cnf";
  648. name[150] = "/_vti_pvt/service.stp";
  649. name[151] = "/_vti_pvt/service.cnf";
  650. name[152] = "/_vti_pvt/access.cnf";
  651. name[153] = "/_vti_bin/shtml.dll";
  652. name[154] = "/_vti_bin/shtml.exe";
  653. name[155] = "/_vti_bin/fpcount.exe";
  654. name[156] = "/_vti_bin/_vti_adm/admin.dll";
  655. name[157] = "/_vti_bin/_vti_aut/author.dll";
  656. name[158] = "/_vti_bin/_vti_aut/dvwssr.dll";
  657. name[159] = "/cgi-dos/args.bat";
  658. name[160] = "/cgi-dos/args.cmd";
  659. name[161] = "/cgi-win/uploader.exe";
  660. name[162] = "/cgi-shl/win-c-sample.exe";
  661. name[163] = "/scripts/c32web.exe";
  662. name[164] = "/scripts/cart32.exe";
  663. name[165] = "/scripts/issadmin/bdir.htr";
  664. name[166] = "/scripts/CGImail.exe";
  665. name[167] = "/scripts/tools/newdsn.exe";
  666. name[168] = "/scripts/fpcount.exe";
  667. name[169] = "/scripts/no-such-file.pl";
  668. name[170] = "/scripts/counter.exe";
  669. name[171] = "/scripts/uploadn.asp";
  670. name[172] = "/scripts/uploadx.asp";
  671. name[173] = "/scripts/upload.asp";
  672. name[174] = "/scripts/repost.asp";
  673. name[175] = "/scripts/postinfo.asp";
  674. name[176] = "/scripts/run.exe";
  675. name[177] = "/scripts/convert.bas";
  676. name[178] = "/scripts/iisadmin/ism.dll";
  677. name[179] = "/scripts/tools/namedrvrs.exe";
  678. name[180] = "/scripts/tools/dsnform.exe";
  679. name[181] = "/scripts/samples/search/webhits.exe";
  680. name[182] = "/scripts/../../cmd.exe";
  681. name[183] = "/scripts/webbbs.exe";
  682. name[184] = "/scripts/samples/ctguestb.idc";
  683. name[185] = "/scripts/samples/details.idc";
  684. name[186] = "/scripts/tools/namedrvs.exe";
  685. name[187] = "/scripts/pu3.pl";
  686. name[188] = "/scripts/proxy/w3proxy.dll";
  687. name[189] = "/scripts/cpshost.dll";
  688. name[190] = "/scripts/Fpadmcgi.exe";
  689. name[191] = "/scripts/iisadmin/bdir.htr";
  690. name[192] = "/scripts/iisadmin/samples/ctgestb.htx";
  691. name[193] = "/scripts/iisadmin/samples/ctgestb.idc";
  692. name[194] = "/scripts/iisadmin/samples/details.htx";
  693. name[195] = "/scripts/iisadmin/samples/details.idc";
  694. name[196] = "/scripts/iisadmin/samples/query.htx";
  695. name[197] = "/scripts/iisadmin/samples/query.idc";
  696. name[198] = "/scripts/iisadmin/samples/register.htx";
  697. name[199] = "/scripts/iisadmin/samples/register.idc";
  698. name[200] = "/scripts/iisadmin/samples/sample.htx";
  699. name[201] = "/scripts/iisadmin/samples/sample.idc";
  700. name[202] = "/scripts/iisadmin/samples/sample2.htx";
  701. name[203] = "/scripts/iisadmin/samples/viewbook.htx";
  702. name[204] = "/scripts/iisadmin/samples/viewbook.idc";
  703. name[205] = "/scripts/iisadmin/tools/ct.htx";
  704. name[206] = "/scripts/iisadmin/tools/ctss.idc";
  705. name[207] = "/scripts/iisadmin/tools/dsnform.exe";
  706. name[208] = "/scripts/iisadmin/tools/namedrvrs.exe";
  707. name[209] = "/scripts/iisadmin/tools/mkilog.exe";
  708. name[210] = "/scripts/iisadmin/tools/newdsn.exe";
  709. name[211] = "/WebShop/templates/cc.txt";
  710. name[212] = "/WebShop/logs/cc.txt";
  711. name[213] = "/WebShop/logs/ck.log";
  712. name[214] = "/config/orders.txt";
  713. name[215] = "/config/import.txt";
  714. name[216] = "/config/checks.txt";
  715. name[217] = "/orders/order.log";
  716. name[218] = "/orders/import.txt";
  717. name[219] = "/orders/checks.txt";
  718. name[220] = "/orders/orders.txt";
  719. name[221] = "/Orders/order.log";
  720. name[222] = "/order/order.log";
  721. name[223] = "/cfdocs/expelval/openfile.cfm";
  722. name[224] = "/cfdocs/expelval/exprcalc.cfm";
  723. name[225] = "/cfdocs/expelval/displayopenedfile.cfm";
  724. name[226] = "/cfdocs/expelval/sendmail.cfm";
  725. name[227] = "/cfdocs/cfmlsyntaxcheck.cfm";
  726. name[228] = "/cfdocs/snippets/fileexist.cfm";
  727. name[229] = "/cfdocs/zero.cfm";
  728. name[230] = "/cfdocs/root.cfm";
  729. name[231] = "/cfdocs/expressions.cfm";
  730. name[232] = "/cfdocs/toxic.cfm";
  731. name[233] = "/cfdocs/mole.cfm";
  732. name[234] = "/cfdocs/exampleapp/publish/admin/addcontent.cfm";
  733. name[235] = "/cfdocs/exampleapp/email/namefile.cfm";
  734. name[236] = "/cfdocs/exampleapp/publish/admin/application.cfm";
  735. name[237] = "/cfdocs/exampleapp/email/application.cfm";
  736. name[238] = "/cfdocs/exampleapp/docs/sourcewindow.cfm";
  737. name[239] = "/cfdocs/examples/parks/detail.cfm";
  738. name[240] = "/cfdocs/examples/cvbeans/beaninfo.cfm";
  739. name[241] = "/cfdocs/cfmlsyntaxcheck.cfm";
  740. name[242] = "/cfdocs/snippets/viewexample.cfm";
  741. name[243] = "/cfdocs/snippets/evaluate.cfm";
  742. name[244] = "/cfappman/index.cfm";
  743. name[245] = "/cfusion/cfapps/forums/forums_.mdb";
  744. name[246] = "/cfusion/cfapps/security/realm_.mdb";
  745. name[247] = "/cfusion/cfapps/forums/data/forums.mdb";
  746. name[248] = "/cfusion/cfapps/security/data/realm.mdb";
  747. name[249] = "/cfusion/database/cfexamples.mdb";
  748. name[250] = "/cfusion/database/cfsnippets.mdb";
  749. name[251] = "/cfusion/database/smpolicy.mdb";
  750. name[252] = "/cfusion/database/cypress.mdb";
  751. name[253] = "/_private/registrations.txt";
  752. name[254] = "/_private/registrations.htm";
  753. name[255] = "/_private/register.txt";
  754. name[256] = "/_private/register.htm";
  755. name[257] = "/_private/orders.txt";
  756. name[258] = "/_private/orders.htm";
  757. name[259] = "/_private/form_results.htm";
  758. name[260] = "/_private/form_results.txt";
  759. name[261] = "/admisapi/fpadmin.htm";
  760. name[262] = "/iissamples/exair/howitworks/codebrws.asp";
  761. name[263] = "/iissamples/sdk/asp/docs/codebrws.asp";
  762. name[264] = "/iissamples/iissamples/query.asp";
  763. name[265] = "/iissamples/exair/search/advsearch.asp";
  764. name[266] = "/iisadmpwd/achg.htr";
  765. name[267] = "/iisadmpwd/aexp.htr";
  766. name[268] = "/iisadmpwd/aexp2.htr";
  767. name[269] = "/iisadmpwd/aexp2b.htr";
  768. name[270] = "/iisadmpwd/aexp3.htr";
  769. name[271] = "/iisadmpwd/aexp4.htr";
  770. name[272] = "/iisadmpwd/aexp4b.htr";
  771. name[273] = "/iisadmpwd/anot.htr";
  772. name[274] = "/iisadmpwd/anot3.htr";
  773. name[275] = "/pw/storemgr.pw";
  774. name[276] = "/config/mountain.cfg";
  775. name[277] = "/orders/mountain.cfg";
  776. name[278] = "/quikstore.cfg";
  777. name[279] = "/PDG_Cart/shopper.conf";
  778. name[280] = "/search97.vts";
  779. name[281] = "/carbo.dll";
  780. name[282] = "/msadc/Samples/SELECTOR/showcode.asp";
  781. name[283] = "/adsamples/config/site.csc";
  782. name[284] = "/Admin_files/order.log";
  783. name[285] = "/mall_log_files/order.log";
  784. name[286] = "/PDG_Cart/order.log";
  785. name[287] = "/doc";
  786. name[288] = "/.html/............./config.sys";
  787. name[289] = "/ssi/envout.bat";
  788. name[290] = "/~root";
  789. name[291] = "/server%20logfile";
  790. name[292] = "/....../autoexec.bat";
  791. name[293] = "/perl/files.pl";
  792. name[294] = "/lpt";
  793. name[295] = "/AdvWorks/equipment/catalog_type.asp";
  794. name[296] = "/ASPSamp/AdvWorks/equipment/catalog_type.asp";
  795. name[297] = "/admin.php3";
  796. name[298] = "/code.php3";
  797. name[299] = "/bb-dnbd/bb-hist.sh";
  798. name[300] = "/domcfg.nsf";
  799. name[301] = "/today.nsf";
  800. name[302] = "/names.nsf";
  801. name[303] = "/catalog.nsf";
  802. name[304] = "/log.nsf";
  803. name[305] = "/domlog.nsf";
  804. name[306] = "/database.nsf";
  805. name[307] = "/secure/.htaccess";
  806. name[308] = "/secure/.wwwacl";
  807. name[309] = "/WebSTAR";
  808. name[310] = "/msadc/msadcs.dll";
  809. name[311] = "/reviews/newpro.cgi";
  810. name[312] = "/_AuthChangeUrl?";
  811. name[313] = "/........./autoexec.bat";
  812. name[314] = "/.html/............/autoexec.bat";
  813. name[315] = "/......../";
  814. name[316] = "/eatme.idc";
  815. name[317] = "/eatme.ida";
  816. name[318] = "/eatme.pl";
  817. name[319] = "/eatme.idq";
  818. name[320] = "/eatme.idw";
  819. name[321] = "/default.asp";
  820. name[322] = "/default.asp::$DATA";
  821. name[323] = "/default.asp.";
  822. name[324] = "/samples/";
  823. name[325] = "/photoads/cgi-bin/env.cgi";
  824. name[326] = "/photoads/cgi-bin/";
  825. name[327] = "/photoads/";
  826. name[328] = "/session/admnlogin";
  827. name[329] = "/session/adminlogin?RCpage=/sysadmin/index.stm";
  828. name[330] = "/samples/search/queryhit.htm";
  829. name[331] = "/msadc/msadcs.dll";
  830. name[332] = "/publisher/|publisher";
  831. name[333] = "/PSUser/PSCOErrPage.htm";
  832. name[334] = "../../boot.ini";
  833. name[335] = "../..";
  834. name[336] = "/aux";
  835. name[337] = "/status";
  836. name[338] = "/status.cgi";
  837. name[339] = "/log";
  838. name[340] = "/stats";
  839. name[341] = "/manage/cgi/cgiproc";
  840. name[342] = "/bb-hist.sh";
  841. name[343] = "/DataBase/";
  842. name[344] = "/scripts/wa.exe";
  843. name[345] = "/cgi-bin/UltraBoard.pl";
  844. name[346] = "/cgi-bin/UltraBoard.cgi";
  845. name[347] = "/piranha/secure/passwd.php3";
  846. name[348] = "/wwwboard/passwd.txt";
  847. name[349] = "/cgi-bin/sojourn.cgi";
  848. name[350] = "/cgi-bin/ews";
  849. name[351] = "/cgi-bin/dumpenv";
  850. name[352] = "/cgi-bin/dfire.cgi";
  851. name[353] = "/cgi-bin/spin_client.cgi";
  852. name[354] = "/ss";
  853. name[355] = "/cgi-bin/echo.bat";
  854. name[356] = "/cgi-bin/hello.bat";
  855. name[357] = "/scripts/dbman/db.cgi";
  856. name[358] = "/cgi-bin/makechanges/easysteps/easysteps.pl";
  857.  
  858. #ifdef MULTI
  859.  
  860.    fprintf(of,"\nStarted Scanning %s\n", target);
  861.  
  862. if((hp=(struct hostent *)gethostbyname(target)) == NULL)
  863. {
  864.    return;
  865. }
  866.         s = socket(AF_INET, SOCK_STREAM, 0);
  867.         bzero(&server, sizeof(server));
  868.         server.sin_family = AF_INET;
  869.         server.sin_port = htons(80);
  870.         memcpy((char *)&server.sin_addr, (char *)hp->h_addr,hp->h_length);
  871.  
  872. if((connect(s, (struct sockaddr *)&server, sizeof(server)))== -1)
  873. {
  874.    return;
  875. }
  876.         send(s,"HEAD / HTTP/1.0\n\n",17,0);
  877.         recv(s,bufferhttp,sizeof(bufferhttp),0);
  878.         fprintf(of,"Version:\n%s",bufferhttp);
  879.         close(s);
  880.  
  881. #else 
  882.  
  883.    s = socket(AF_INET,SOCK_STREAM, 0);
  884.    bcopy(hp->h_addr, (char *)&server.sin_addr, hp->h_length);
  885.    server.sin_family = AF_INET;
  886.    server.sin_port = htons(80);
  887.  
  888. if((connect(s, (struct sockaddr *)&server, sizeof(server))) == -1)
  889. {  
  890.    perror("connect");
  891.    exit(1);
  892. }
  893.    send(s,"HEAD / HTTP/1.0\n\n",17,0);
  894.    recv(s,bufferhttp,sizeof(bufferhttp),0);
  895.    fprintf(of,"Scanning:%s\n",host);
  896.    fprintf(of,"Version:\n%s",bufferhttp);
  897.  
  898. #endif
  899.  
  900. fprintf(of,"The following was found on the Server\n");
  901.  
  902. for(count=1 ; count != CGIFLAWS ; count++ )
  903. {   
  904.  
  905. #ifdef MULTI
  906.  
  907.         s = socket(AF_INET, SOCK_STREAM, 0);
  908.         bzero(&server, sizeof(server));
  909.         server.sin_family = AF_INET;
  910.         server.sin_port = htons(80);
  911.         memcpy((char *)&server.sin_addr, (char *)hp->h_addr,hp->h_length);
  912.  
  913. if((connect(s, (struct sockaddr *)&server, sizeof(server))) == -1)
  914. {
  915.    return;
  916. }
  917.  
  918. #else
  919.  
  920.  
  921.    s = socket(AF_INET, SOCK_STREAM, 0);    
  922.    bcopy(hp->h_addr, (char *)&server.sin_addr, hp->h_length);
  923.    server.sin_family = AF_INET;
  924.    server.sin_port = htons(80);   
  925.  
  926. if((connect(s, (struct sockaddr *)&server, sizeof(server))) == -1)
  927. {
  928.    perror("connect");
  929.    exit(1);
  930. }
  931.    
  932. #endif
  933.  
  934. for(number=0; number<1024; number++)
  935. {
  936.    buffer[number] = '\0';
  937. }
  938.    send(s,get[count],strlen(get[count]),0);
  939.    recv(s, buffer, sizeof(buffer),0);                 
  940.    cgicheck = strstr(buffer,msg);
  941.  
  942. if(cgicheck != NULL)
  943.    fprintf(of,"%s \n",name[count]);      
  944. else  
  945.    close(s);
  946. }
  947. #ifdef MULTI
  948. return;
  949. #else
  950. return 0;
  951. fclose(of);
  952. #endif
  953. }
  954.  
  955.  
  956.