forked from irsdl/IIS-ShortName-Scanner
-
Notifications
You must be signed in to change notification settings - Fork 0
/
config.xml
76 lines (54 loc) · 3.86 KB
/
config.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE properties SYSTEM "http://java.sun.com/dtd/properties.dtd">
<properties>
<comment>IIS Short File/Folder Name (8.3) Scanner - Configuration File</comment>
<entry key="debug">false</entry>
<entry key="userAgent"><![CDATA[Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.215 Safari/534.10]]></entry>
<!-- Your cookie information. Can be a hidden value that will pass your WAF. -->
<entry key="cookies">IIS_Tilde_Scanner=1;</entry>
<!-- Additional headers such as Authorization header can be defined here -->
<entry key="headersDelimiter">@@</entry>
<entry key="headers">X-Forwarded-For: 127.0.0.1@@X-Originating-IP: 127.0.0.1@@X-Cluster-Client-Ip: 127.0.0.1</entry>
<!-- In order to see the errors better than a normal request you can use aspxerrorpath=/ -->
<entry key="URLSuffix"><![CDATA[?&aspxerrorpath=/]]></entry>
<!-- discard any of these to have more speed! -->
<!-- default is based on letter frequencies http://en.wikipedia.org/wiki/Letter_frequency -->
<entry key="inScopeCharacters"><![CDATA[ETAONRISHDLFCMUGYPWBVKJXQZ0123456789_-$~()&!#%'@^`{}]]></entry>
<!-- in Milliseconds -->
<entry key="maxConnectionTimeOut">20000</entry>
<entry key="maxRetryTimes">10</entry>
<!-- Proxy will be ignored if this is empty -->
<entry key="proxyServerName"></entry>
<entry key="proxyServerPort"></entry>
<!-- Delay after each request in milliseconds -->
<entry key="maxDelayAfterEachRequest">0</entry>
<entry key="magicFinalPartDelimiter">,</entry>
<entry key="magicFinalPartList"><![CDATA[\a.aspx,\a.asp,/a.aspx,/a.asp,/a.shtml,/a.asmx,/a.ashx,/a.config,/a.php,/a.jpg,/webresource.axd,/a.xxx]]></entry>
<!-- in Windows we can sometimes use > instead of ? -->
<entry key="questionMarkSymbol"><![CDATA[?]]></entry>
<!-- in Windows we can sometimes use < instead of * - only change this if you need to (it misses items) -->
<entry key="asteriskSymbol"><![CDATA[*]]></entry>
<!-- "*" will be replaced with asteriskSymbol variable later -->
<entry key="magicFileName"><![CDATA[*~1*]]></entry>
<!-- "*" will be replaced with asteriskSymbol variable later -->
<entry key="magicFileExtension"><![CDATA[*]]></entry>
<!-- This will be used to compare the different responses and accept them as equal if their length difference is equal or less than this -->
<!-- -1 can be used to ignore this rule completely -->
<!-- This may make the scan result unreliable so must be very small value or -1 -->
<entry key="acceptableDifferenceLengthBetweenResponses">10</entry>
<entry key="requestMethodDelimiter">,</entry>
<entry key="requestMethod"><![CDATA[DEBUG,OPTIONS,GET,POST,HEAD,TRACE]]></entry>
<!-- This will be used to find file or directory names that start with this string - should be less than 6 characters -->
<entry key="nameStartsWith"><![CDATA[]]></entry>
<!-- This will be used to find file or directory extensions that start with this string - should be less than 4 characters -->
<!-- This may not be reliable when the extension discovery is not reliable on a target -->
<entry key="extStartsWith"><![CDATA[]]></entry>
<!-- This will be used to set a maximum value on the "NUMBER_HERE" parameter in FILENAME~NUMBER_HERE (example: DEFAUL~2.ASP) -->
<!-- The minimum value for this parameter is 1 -->
<entry key="maxNumericalPart">10</entry>
<!-- This will be used to set a maximum value on the "NUMBER_HERE" parameter in FILENAME~NUMBER_HERE even when the previous number is not available -->
<!-- For instance, if it is set to 3, when we have DEFAUL~1.ASP and we do not have DEFAULT~2.ASP, it still checks DEFAUL~3.asp -->
<!-- This parameter automatically override the "maxNumericalPart" paremeter when "forceNumericalPart > maxNumericalPart" -->
<!-- The minimum value for this parameter is 1 -->
<entry key="forceNumericalPart">3</entry>
</properties>