what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Neon_beta5.c

Neon_beta5.c
Posted May 12, 2000
Authored by Axess | Site b0f.freebsd.lublin.pl

Neon beta5 - Simple Host or Iplist cgi Scanner which does 358 checks.

Changes: Added more cgi, fixed better output.
tags | cgi
SHA-256 | a0fc3d293b0acf7825ebd5b79d94d7aa2fa74286565aaee9b6fc858b23fb9ae6

Neon_beta5.c

Change Mirror Download
/****************************************************************************

-(- Neon beta5 -)-
Cgi Security Scanner
(358) Checks

Instead of just making it as a single host scanner, as everyone else does.
I added so you can compile it as a iplist too if that is needed =)

Host Scanner Compile : gcc Neon_beta5.c -o Neon -Wall
Iplist Scanner Compile : gcc Neon_beta5.c -o Neon -Wall -DMULTI


Usage: just run the file damit #!#%&#!

Shoutouts to: prizm and all the rest that have helped me out with adding
new flaws to it before this public release.


NOTE! I dont answer any questions on how to use any of these flaws.

Changes from beta4:
Added more cgi
Fixed better output

Buffer0verfl0w Security www.b0f.com
By axess ( axess@mail.com ) May-2000

*****************************************************************************/





#include <stdio.h>
#include <unistd.h>
#include <netinet/in.h>
#include <netdb.h>
#include <string.h>
#include <sys/socket.h>
#include <arpa/inet.h>
#include <stdlib.h>

#define CGIFLAWS 359
#ifdef MULTI
void cgihost(char *);
#endif
struct sockaddr_in server;
struct hostent *hp;
char host[1024];
char host2[1024];
char out[100];
char *get[400];
char *name[400];
char bufferhttp[1024];
char buffer[1024];
char *temp;
char *ip_ptr;
char *cgicheck;
char msg[] = "200 OK";
int s,count,antal,number;
int f1,f2,f3,f4;
int s1,s2,s3,s4;
int ip;
FILE *inf;
FILE *of;

int main()
{
system("clear");
printf("\n\n\n");
for ( antal = 1 ; antal <= 28 ; antal++ )
putchar(' ');
printf("-(- Neon beta5 -)-\n");
for ( antal = 1 ; antal <= 20 ; antal++ )
putchar(' ');
#ifdef MULTI
printf(" Multi Host Cgi Security Scanner\n");
#else
printf("Single Host Cgi Security Scanner\n");
#endif

for ( antal = 1 ; antal <= 30 ; antal++ )
putchar(' ');
printf("(358) Checks\n\n");
for ( antal = 1 ; antal <= 24 ; antal++ )
putchar(' ');
#ifdef MULTI
printf("List : ");
scanf("%s",host);

if((inf = fopen(host, "r")) == NULL)
{
printf("Error: input file does not exist!!!\n");
exit(1);
}

for ( antal = 1 ; antal <= 21 ; antal++ )
putchar(' ');
printf("Logfile : ");
scanf("%s",out);

if((of = fopen(out, "w")) == NULL)
{
printf("Error: Cant write to file!!!\n");
exit(1);
}

while(fscanf(inf, "%s", host) != EOF)
{
cgihost(host);
}
return 0;
}

void cgihost(char *target)
{
#else
printf("Host : ");
scanf("%s",host);

if((hp=gethostbyname(host)) == NULL)
{
herror("gethostbyname");
exit(1);
}

for ( antal = 1 ; antal <= 21 ; antal++ )
putchar(' ');
printf("Logfile : ");
scanf("%s",out);

if((of = fopen(out, "w")) == NULL)
{
printf("Error: Cant write to file!!!\n");
exit(1);
}
#endif

get[1] = "GET /cgi-bin/whois_raw.cgi HTTP/1.0\n\n";
get[2] = "GET /cgi-bin/phf HTTP/1.0\n\n";
get[3] = "GET /cgi-bin/ls HTTP/1.0\n\n";
get[4] = "GET /cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi HTTP/1.0\n\n";
get[5] = "GET /cgi-bin/.fhp HTTP/1.0\n\n";
get[6] = "GET /cgi-bin/Count.cgi HTTP/1.0\n\n";
get[7] = "GET /cgi-bin/test-cgi HTTP/1.0\n\n";
get[8] = "GET /cgi-bin/nph-test-cgi HTTP/1.0\n\n";
get[9] = "GET /cgi-bin/php.cgi HTTP/1.0\n\n";
get[10] = "GET /cgi-bin/php-cgi HTTP/1.0\n\n";
get[11] = "GET /cgi-bin/handler HTTP/1.0\n\n";
get[12] = "GET /cgi-bin/handler.cgi HTTP/1.0\n\n";
get[13] = "GET /cgi-bin/minimal.exe HTTP/1.0\n\n";
get[14] = "GET /cgi-bin/stats.prg HTTP/1.0\n\n";
get[15] = "GET /cgi-bin/statsconfig HTTP/1.0\n\n";
get[16] = "GET /cgi-bin/excite HTTP/1.0\n\n";
get[17] = "GET /cgi-bin/webgais HTTP/1.0\n\n";
get[18] = "GET /cgi-bin/websendmail HTTP/1.0\n\n";
get[19] = "GET /cgi-bin/webdist.cgi HTTP/1.0\n\n";
get[20] = "GET /cgi-bin/faxsurvey HTTP/1.0\n\n";
get[21] = "GET /cgi-bin/dig.cgi HTTP/1.0\n\n";
get[22] = "GET /cgi-bin/getdoc.cgi HTTP/1.0\n\n";
get[23] = "GET /cgi-bin/webplus HTTP/1.0\n\n";
get[24] = "GET /cgi-bin/bizdb1-search.cgi HTTP/1.0\n\n";
get[25] = "GET /cgi-bin/htmlscript HTTP/1.0\n\n";
get[26] = "GET /cgi-bin/pfdispaly.cgi HTTP/1.0\n\n";
get[27] = "GET /cgi-bin/perl.exe HTTP/1.0\n\n";
get[28] = "GET /cgi-bin/ppdscgi.exe HTTP/1.0\n\n";
get[29] = "GET /cgi-bin/cart.pl HTTP/1.0\n\n";
get[30] = "GET /cgi-bin/bigconf.cgi HTTP/1.0\n\n";
get[31] = "GET /cgi-bin/wwwboard.pl HTTP/1.0\n\n";
get[32] = "GET /cgi-bin/www-sql HTTP/1.0\n\n";
get[33] = "GET /cgi-bin/htsearch HTTP/1.0\n\n";
get[34] = "GET /cgi-bin/view-source HTTP/1.0\n\n";
get[35] = "GET /cgi-bin/campas HTTP/1.0\n\n";
get[36] = "GET /cgi-bin/aglimpse HTTP/1.0\n\n";
get[37] = "GET /cgi-bin/get32.exe HTTP/1.0\n\n";
get[38] = "GET /cgi-bin/man.sh HTTP/1.0\n\n";
get[39] = "GET /cgi-bin/meta.pl HTTP/1.0\n\n";
get[40] = "GET /cgi-bin/AT-admin.cgi HTTP/1.0\n\n";
get[41] = "GET /cgi-bin/filemail.pl HTTP/1.0\n\n";
get[42] = "GET /cgi-bin/maillist.pl HTTP/1.0\n\n";
get[43] = "GET /cgi-bin/maillist.cgi HTTP/1.0\n\n";
get[44] = "GET /cgi-bin/jj HTTP/1.0\n\n";
get[45] = "GET /cgi-bin/info2www HTTP/1.0\n\n";
get[46] = "GET /cgi-bin/files.pl HTTP/1.0\n\n";
get[47] = "GET /cgi-bin/finger HTTP/1.0\n\n";
get[48] = "GET /cgi-bin/finger?@localhost HTTP/1.0\n\n";
get[49] = "GET /cgi-bin/bnbform.cgi HTTP/1.0\n\n";
get[50] = "GET /cgi-bin/survey.cgi HTTP/1.0\n\n";
get[51] = "GET /cgi-bin/AnyForm2 HTTP/1.0\n\n";
get[52] = "GET /cgi-bin/textcounter.pl HTTP/1.0\n\n";
get[53] = "GET /cgi-bin/classifieds.cgi HTTP/1.0\n\n";
get[54] = "GET /cgi-bin/classified.cgi HTTP/1.0\n\n";
get[55] = "GET /cgi-bin/environ.cgi HTTP/1.0\n\n";
get[56] = "GET /cgi-bin/fpexplore.exe HTTP/1.0\n\n";
get[57] = "GET /cgi-bin/imagemap.exe HTTP/1.0\n\n";
get[58] = "GET /cgi-bin/cgitest.exe HTTP/1.0\n\n";
get[59] = "GET /cgi-bin/anyboard.cgi HTTP/1.0\n\n";
get[60] = "GET /cgi-bin/webbbs.cgi HTTP/1.0\n\n";
get[61] = "GET /cgi-bin/visadmin.exe HTTP/1.0\n\n";
get[62] = "GET /cgi-bin/nph-publish HTTP/1.0\n\n";
get[63] = "GET /cgi-bin/perlshop.cgi HTTP/1.0\n\n";
get[64] = "GET /cgi-bin/wrap HTTP/1.0\n\n";
get[65] = "GET /cgi-bin/cgiwrap HTTP/1.0\n\n";
get[66] = "GET /cgi-bin/cachemgr.cgi HTTP/1.0\n\n";
get[67] = "GET /cgi-bin/query HTTP/1.0\n\n";
get[68] = "GET /cgi-bin/rpm_query HTTP/1.0\n\n";
get[69] = "GET /cgi-bin/ax.cgi HTTP/1.0\n\n";
get[70] = "GET /cgi-bin/ax-admin.cgi HTTP/1.0\n\n";
get[71] = "GET /cgi-bin/architext_query.pl HTTP/1.0\n\n";
get[72] = "GET /cgi-bin/w3-msql/ HTTP/1.0\n\n";
get[73] = "GET /cgi-bin/add_ftp.cgi HTTP/1.0\n\n";
get[74] = "GET /cgi-bin/test.bat HTTP/1.0\n\n";
get[75] = "GET /cgi-bin/input.bat HTTP/1.0\n\n";
get[76] = "GET /cgi-bin/input2.bat HTTP/1.0\n\n";
get[77] = "GET /cgi-bin/day5datacopier.cgi HTTP/1.0\n\n";
get[78] = "GET /cgi-bin/day5datanotifier.cgi HTTP/1.0\n\n";
get[79] = "GET /cgi-bin/whois.cgi HTTP/1.0\n\n";
get[80] = "GET /cgi-bin/mlog.phtml HTTP/1.0\n\n";
get[81] = "GET /cgi-bin/archie HTTP/1.0\n\n";
get[82] = "GET /cgi-bin/bb-hist.sh HTTP/1.0\n\n";
get[83] = "GET /cgi-bin/nph-error.pl HTTP/1.0\n\n";
get[84] = "GET /cgi-bin/post_query HTTP/1.0\n\n";
get[85] = "GET /cgi-bin/ppdscgi.exe HTTP/1.0\n\n";
get[86] = "GET /cgi-bin/webmap.cgi HTTP/1.0\n\n";
get[87] = "GET /cgi-bin/tigvote.cgi HTTP/1.0\n\n";
get[88] = "GET /cgi-bin/webutils.pl HTTP/1.0\n\n";
get[89] = "GET /cgi-bin/axs.cgi HTTP/1.0\n\n";
get[90] = "GET /cgi-bin/responder.cgi HTTP/1.0\n\n";
get[91] = "GET /cgi-bin/plusmail HTTP/1.0\n\n";
get[92] = "GET /cgi-bin/passwd.txt HTTP/1.0\n\n";
get[93] = "GET /cgi-bin/Cgitest.exe HTTP/1.0\n\n";
get[94] = "GET /cgi-bin/GW5/GWWEB.EXE HTTP/1.0\n\n";
get[95] = "GET /cgi-bin/webwho.pl HTTP/1.0\n\n";
get[96] = "GET /cgi-bin/search.cgi HTTP/1.0\n\n";
get[97] = "GET /cgi-bin/dbmlparser.exe HTTP/1.0\n\n";
get[98] = "GET /cgi-bin/search/tidfinder.cgi HTTP/1.0\n\n";
get[99] = "GET /cgi-bin/wa HTTP/1.0\n\n";
get[100] = "GET /cgi-bin/tablebuild.pl HTTP/1.0\n\n";
get[101] = "GET /cgi-bin/displayTC.pl HTTP/1.0\n\n";
get[102] = "GET /cgi-bin/uptime HTTP/1.0\n\n";
get[103] = "GET /cgi-bin/cvsweb/src/usr.bin/rdist/expand.c HTTP/1.0\n\n";
get[104] = "GET /cgi-bin/c_download.cgi HTTP/1.0\n\n";
get[105] = "GET /cgi-bin/download.cgi HTTP/1.0\n\n";
get[106] = "GET /cgi-bin/program.pl HTTP/1.0\n\n";
get[107] = "GET /cgi-bin/ntitar.pl HTTP/1.0\n\n";
get[108] = "GET /cgi-bin/enter.cgi HTTP/1.0\n\n";
get[109] = "GET /cgi-bin/test.html HTTP/1.0\n\n";
get[110] = "GET /cgi-bin/test-unix.html HTTP/1.0\n\n";
get[111] = "GET /cgi-bin/printenv HTTP/1.0\n\n";
get[112] = "GET /cgi-bin/dasp/fm_shell.asp HTTP/1.0\n\n";
get[113] = "GET /cgi-bin/cgiback.cgi HTTP/1.0\n\n";
get[114] = "GET /cgi-bin/unlg1.1 HTTP/1.0\n\n";
get[115] = "GET /cgi-bin/unlg1.2 HTTP/1.0\n\n";
get[116] = "GET /cgi-bin/gH.cgi HTTP/1.0\n\n";
get[117] = "GET /cgi-bin/rwwwshell.pl HTTP/1.0\n\n";
get[118] = "GET /cgi-bin/php HTTP/1.0\n\n";
get[119] = "GET /cgi-bin/perl HTTP/1.0\n\n";
get[120] = "GET /cgi-bin/wwwboard.cgi HTTP/1.0\n\n";
get[121] = "GET /cgi-bin/guestbook.cgi HTTP/1.0\n\n";
get[122] = "GET /cgi-bin/guestbook.pl HTTP/1.0\n\n";
get[123] = "GET /cgi-bin/passwd HTTP/1.0\n\n";
get[124] = "GET /cgi-bin/passwd.txt HTTP/1.0\n\n";
get[125] = "GET /cgi-bin/password HTTP/1.0\n\n";
get[126] = "GET /cgi-bin/password.txt HTTP/1.0\n\n";
get[127] = "GET /cgi-bin/flexform.cgi HTTP/1.0\n\n";
get[128] = "GET /cgi-bin/MachineInfo HTTP/1.0\n\n";
get[129] = "GET /cgi-bin/lwgate HTTP/1.0\n\n";
get[130] = "GET /cgi-bin/lwgate.cgi HTTP/1.0\n\n";
get[131] = "GET /cgi-bin/nlog-smb.cgi HTTP/1.0\n\n";
get[132] = "GET /cgi-bin/icat HTTP/1.0\n\n";
get[133] = "GET /cgi-bin/tst.bat HTTP/1.0\n\n";
get[134] = "GET /cgi-bin/infosrch.cgi HTTP/1.0\n\n";
get[135] = "GET /cgi-bin/webwho.pl HTTP/1.0\n\n";
get[136] = "GET /cgi-bin/FormHandler.cgi HTTP/1.0\n\n";
get[137] = "GET /cgi-bin/cgi-lib.pl HTTP/1.0\n\n";
get[138] = "GET /com1 HTTP/1.0\n\n";
get[139] = "GET /com2 HTTP/1.0\n\n";
get[140] = "GET /com3 HTTP/1.0\n\n";
get[141] = "GET /con HTTP/1.0\n\n";
get[142] = "GET /_vti_inf.html HTTP/1.0\n\n";
get[143] = "GET /_vti_pvt/service.pwd HTTP/1.0\n\n";
get[144] = "GET /_vti_pvt/users.pwd HTTP/1.0\n\n";
get[145] = "GET /_vti_pvt/authors.pwd HTTP/1.0\n\n";
get[146] = "GET /_vti_pvt/administrators.pwd HTTP/1.0\n\n";
get[147] = "GET /_vti_pvt/writeto.cnf HTTP/1.0\n\n";
get[148] = "GET /_vti_pvt/svcacl.cnf HTTP/1.0\n\n";
get[149] = "GET /_vti_pvt/services.cnf HTTP/1.0\n\n";
get[150] = "GET /_vti_pvt/service.stp HTTP/1.0\n\n";
get[151] = "GET /_vti_pvt/service.cnf HTTP/1.0\n\n";
get[152] = "GET /_vti_pvt/access.cnf HTTP/1.0\n\n";
get[153] = "GET /_vti_bin/shtml.dll HTTP/1.0\n\n";
get[154] = "GET /_vti_bin/shtml.exe HTTP/1.0\n\n";
get[155] = "GET /_vti_bin/fpcount.exe HTTP/1.0\n\n";
get[156] = "GET /_vti_bin/_vti_adm/admin.dll HTTP/1.0\n\n";
get[157] = "GET /_vti_bin/_vti_aut/author.dll HTTP/1.0\n\n";
get[158] = "GET /_vti_bin/_vti_aut/dvwssr.dll HTTP/1.0\n\n";
get[159] = "GET /cgi-dos/args.bat HTTP/1.0\n\n";
get[160] = "GET /cgi-dos/args.cmd HTTP/1.0\n\n";
get[161] = "GET /cgi-win/uploader.exe HTTP/1.0\n\n";
get[162] = "GET /cgi-shl/win-c-sample.exe HTTP/1.0\n\n";
get[163] = "GET /scripts/c32web.exe HTTP/1.0\n\n";
get[164] = "GET /scripts/cart32.exe HTTP/1.0\n\n";
get[165] = "GET /scripts/issadmin/bdir.htr HTTP/1.0\n\n";
get[166] = "GET /scripts/CGImail.exe HTTP/1.0\n\n";
get[167] = "GET /scripts/tools/newdsn.exe HTTP/1.0\n\n";
get[168] = "GET /scripts/fpcount.exe HTTP/1.0\n\n";
get[169] = "GET /scripts/no-such-file.pl HTTP/1.0\n\n";
get[170] = "GET /scripts/counter.exe HTTP/1.0\n\n";
get[171] = "GET /scripts/uploadn.asp HTTP/1.0\n\n";
get[172] = "GET /scripts/uploadx.asp HTTP/1.0\n\n";
get[173] = "GET /scripts/upload.asp HTTP/1.0\n\n";
get[174] = "GET /scripts/repost.asp HTTP/1.0\n\n";
get[175] = "GET /scripts/postinfo.asp HTTP/1.0\n\n";
get[176] = "GET /scripts/run.exe HTTP/1.0\n\n";
get[177] = "GET /scripts/convert.bas HTTP/1.0\n\n";
get[178] = "GET /scripts/iisadmin/ism.dll HTTP/1.0\n\n";
get[179] = "GET /scripts/tools/getdrvrs.exe HTTP/1.0\n\n";
get[180] = "GET /scripts/tools/dsnform.exe HTTP/1.0\n\n";
get[181] = "GET /scripts/samples/search/webhits.exe HTTP/1.0\n\n";
get[182] = "GET /scripts/../../cmd.exe HTTP/1.0\n\n";
get[183] = "GET /scripts/webbbs.exe HTTP/1.0\n\n";
get[184] = "GET /scripts/samples/ctguestb.idc HTTP/1.0\n\n";
get[185] = "GET /scripts/samples/details.idc HTTP/1.0\n\n";
get[186] = "GET /scripts/tools/getdrvs.exe HTTP/1.0\n\n";
get[187] = "GET /scripts/pu3.pl HTTP/1.0\n\n";
get[188] = "GET /scripts/proxy/w3proxy.dll HTTP/1.0\n\n";
get[189] = "GET /scripts/cpshost.dll HTTP/1.0\n\n";
get[190] = "GET /scripts/Fpadmcgi.exe HTTP/1.0\n\n";
get[191] = "GET /scripts/iisadmin/bdir.htr HTTP/1.0\n\n";
get[192] = "GET /scripts/iisadmin/samples/ctgestb.htx HTTP/1.0\n\n";
get[193] = "GET /scripts/iisadmin/samples/ctgestb.idc HTTP/1.0\n\n";
get[194] = "GET /scripts/iisadmin/samples/details.htx HTTP/1.0\n\n";
get[195] = "GET /scripts/iisadmin/samples/details.idc HTTP/1.0\n\n";
get[196] = "GET /scripts/iisadmin/samples/query.htx HTTP/1.0\n\n";
get[197] = "GET /scripts/iisadmin/samples/query.idc HTTP/1.0\n\n";
get[198] = "GET /scripts/iisadmin/samples/register.htx HTTP/1.0\n\n";
get[199] = "GET /scripts/iisadmin/samples/register.idc HTTP/1.0\n\n";
get[200] = "GET /scripts/iisadmin/samples/sample.htx HTTP/1.0\n\n";
get[201] = "GET /scripts/iisadmin/samples/sample.idc HTTP/1.0\n\n";
get[202] = "GET /scripts/iisadmin/samples/sample2.htx HTTP/1.0\n\n";
get[203] = "GET /scripts/iisadmin/samples/viewbook.htx HTTP/1.0\n\n";
get[204] = "GET /scripts/iisadmin/samples/viewbook.idc HTTP/1.0\n\n";
get[205] = "GET /scripts/iisadmin/tools/ct.htx HTTP/1.0\n\n";
get[206] = "GET /scripts/iisadmin/tools/ctss.idc HTTP/1.0\n\n";
get[207] = "GET /scripts/iisadmin/tools/dsnform.exe HTTP/1.0\n\n";
get[208] = "GET /scripts/iisadmin/tools/getdrvrs.exe HTTP/1.0\n\n";
get[209] = "GET /scripts/iisadmin/tools/mkilog.exe HTTP/1.0\n\n";
get[210] = "GET /scripts/iisadmin/tools/newdsn.exe HTTP/1.0\n\n";
get[211] = "GET /WebShop/templates/cc.txt HTTP/1.0\n\n";
get[212] = "GET /WebShop/logs/cc.txt HTTP/1.0\n\n";
get[213] = "GET /WebShop/logs/ck.log HTTP/1.0\n\n";
get[214] = "GET /config/orders.txt HTTP/1.0\n\n";
get[215] = "GET /config/import.txt HTTP/1.0\n\n";
get[216] = "GET /config/checks.txt HTTP/1.0\n\n";
get[217] = "GET /orders/order.log HTTP/1.0\n\n";
get[218] = "GET /orders/import.txt HTTP/1.0\n\n";
get[219] = "GET /orders/checks.txt HTTP/1.0\n\n";
get[220] = "GET /orders/orders.txt HTTP/1.0\n\n";
get[221] = "GET /Orders/order.log HTTP/1.0\n\n";
get[222] = "GET /order/order.log HTTP/1.0\n\n";
get[223] = "GET /cfdocs/expelval/openfile.cfm HTTP/1.0\n\n";
get[224] = "GET /cfdocs/expelval/exprcalc.cfm HTTP/1.0\n\n";
get[225] = "GET /cfdocs/expelval/displayopenedfile.cfm HTTP/1.0\n\n";
get[226] = "GET /cfdocs/expelval/sendmail.cfm HTTP/1.0\n\n";
get[227] = "GET /cfdocs/cfmlsyntaxcheck.cfm HTTP/1.0\n\n";
get[228] = "GET /cfdocs/snippets/fileexist.cfm HTTP/1.0\n\n";
get[229] = "GET /cfdocs/zero.cfm HTTP/1.0\n\n";
get[230] = "GET /cfdocs/root.cfm HTTP/1.0\n\n";
get[231] = "GET /cfdocs/expressions.cfm HTTP/1.0\n\n";
get[232] = "GET /cfdocs/toxic.cfm HTTP/1.0\n\n";
get[233] = "GET /cfdocs/mole.cfm HTTP/1.0\n\n";
get[234] = "GET /cfdocs/exampleapp/publish/admin/addcontent.cfm HTTP/1.0\n\n";
get[235] = "GET /cfdocs/exampleapp/email/getfile.cfm HTTP/1.0\n\n";
get[236] = "GET /cfdocs/exampleapp/publish/admin/application.cfm HTTP/1.0\n\n";
get[237] = "GET /cfdocs/exampleapp/email/application.cfm HTTP/1.0\n\n";
get[238] = "GET /cfdocs/exampleapp/docs/sourcewindow.cfm HTTP/1.0\n\n";
get[239] = "GET /cfdocs/examples/parks/detail.cfm HTTP/1.0\n\n";
get[240] = "GET /cfdocs/examples/cvbeans/beaninfo.cfm HTTP/1.0\n\n";
get[241] = "GET /cfdocs/cfmlsyntaxcheck.cfm HTTP/1.0\n\n";
get[242] = "GET /cfdocs/snippets/viewexample.cfm HTTP/1.0\n\n";
get[243] = "GET /cfdocs/snippets/evaluate.cfm HTTP/1.0\n\n";
get[244] = "GET /cfappman/index.cfm HTTP/1.0\n\n";
get[245] = "GET /cfusion/cfapps/forums/forums_.mdb HTTP/1.0\n\n";
get[246] = "GET /cfusion/cfapps/security/realm_.mdb HTTP/1.0\n\n";
get[247] = "GET /cfusion/cfapps/forums/data/forums.mdb HTTP/1.0\n\n";
get[248] = "GET /cfusion/cfapps/security/data/realm.mdb HTTP/1.0\n\n";
get[249] = "GET /cfusion/database/cfexamples.mdb HTTP/1.0\n\n";
get[250] = "GET /cfusion/database/cfsnippets.mdb HTTP/1.0\n\n";
get[251] = "GET /cfusion/database/smpolicy.mdb HTTP/1.0\n\n";
get[252] = "GET /cfusion/database/cypress.mdb HTTP/1.0\n\n";
get[253] = "GET /_private/registrations.txt HTTP/1.0\n\n";
get[254] = "GET /_private/registrations.htm HTTP/1.0\n\n";
get[255] = "GET /_private/register.txt HTTP/1.0\n\n";
get[256] = "GET /_private/register.htm HTTP/1.0\n\n";
get[257] = "GET /_private/orders.txt HTTP/1.0\n\n";
get[258] = "GET /_private/orders.htm HTTP/1.0\n\n";
get[259] = "GET /_private/form_results.htm HTTP/1.0\n\n";
get[260] = "GET /_private/form_results.txt HTTP/1.0\n\n";
get[261] = "GET /admisapi/fpadmin.htm HTTP/1.0\n\n";
get[262] = "GET /iissamples/exair/howitworks/codebrws.asp HTTP/1.0\n\n";
get[263] = "GET /iissamples/sdk/asp/docs/codebrws.asp HTTP/1.0\n\n";
get[264] = "GET /iissamples/iissamples/query.asp HTTP/1.0\n\n";
get[265] = "GET /iissamples/exair/search/advsearch.asp HTTP/1.0\n\n";
get[266] = "GET /iisadmpwd/achg.htr HTTP/1.0\n\n";
get[267] = "GET /iisadmpwd/aexp.htr HTTP/1.0\n\n";
get[268] = "GET /iisadmpwd/aexp2.htr HTTP/1.0\n\n";
get[269] = "GET /iisadmpwd/aexp2b.htr HTTP/1.0\n\n";
get[270] = "GET /iisadmpwd/aexp3.htr HTTP/1.0\n\n";
get[271] = "GET /iisadmpwd/aexp4.htr HTTP/1.0\n\n";
get[272] = "GET /iisadmpwd/aexp4b.htr HTTP/1.0\n\n";
get[273] = "GET /iisadmpwd/anot.htr HTTP/1.0\n\n";
get[274] = "GET /iisadmpwd/anot3.htr HTTP/1.0\n\n";
get[275] = "GET /pw/storemgr.pw HTTP/1.0\n\n";
get[276] = "GET /config/mountain.cfg HTTP/1.0\n\n";
get[277] = "GET /orders/mountain.cfg HTTP/1.0\n\n";
get[278] = "GET /quikstore.cfg HTTP/1.0\n\n";
get[279] = "GET /PDG_Cart/shopper.conf HTTP/1.0\n\n";
get[280] = "GET /search97.vts HTTP/1.0\n\n";
get[281] = "GET /carbo.dll HTTP/1.0\n\n";
get[282] = "GET /msadc/Samples/SELECTOR/showcode.asp HTTP/1.0\n\n";
get[283] = "GET /adsamples/config/site.csc HTTP/1.0\n\n";
get[284] = "GET /Admin_files/order.log HTTP/1.0\n\n";
get[285] = "GET /mall_log_files/order.log HTTP/1.0\n\n";
get[286] = "GET /PDG_Cart/order.log HTTP/1.0\n\n";
get[287] = "GET /doc HTTP/1.0\n\n";
get[288] = "GET /.html/............./config.sys HTTP/1.0\n\n";
get[289] = "GET /ssi/envout.bat HTTP/1.0\n\n";
get[290] = "GET /~root HTTP/1.0\n\n";
get[291] = "GET /server%20logfile HTTP/1.0\n\n";
get[292] = "GET /....../autoexec.bat HTTP/1.0\n\n";
get[293] = "GET /perl/files.pl HTTP/1.0\n\n";
get[294] = "GET /lpt HTTP/1.0\n\n";
get[295] = "GET /AdvWorks/equipment/catalog_type.asp HTTP/1.0\n\n";
get[296] = "GET /ASPSamp/AdvWorks/equipment/catalog_type.asp HTTP/1.0\n\n";
get[297] = "GET /admin.php3 HTTP/1.0\n\n";
get[298] = "GET /code.php3 HTTP/1.0\n\n";
get[299] = "GET /bb-dnbd/bb-hist.sh HTTP/1.0\n\n";
get[300] = "GET /domcfg.nsf HTTP/1.0\n\n";
get[301] = "GET /today.nsf HTTP/1.0\n\n";
get[302] = "GET /names.nsf HTTP/1.0\n\n";
get[303] = "GET /catalog.nsf HTTP/1.0\n\n";
get[304] = "GET /log.nsf HTTP/1.0\n\n";
get[305] = "GET /domlog.nsf HTTP/1.0\n\n";
get[306] = "GET /database.nsf HTTP/1.0\n\n";
get[307] = "GET /secure/.htaccess HTTP/1.0\n\n";
get[308] = "GET /secure/.wwwacl HTTP/1.0\n\n";
get[309] = "GET /WebSTAR HTTP/1.0\n\n";
get[310] = "GET /msadc/msadcs.dll HTTP/1.0\n\n";
get[311] = "GET /reviews/newpro.cgi HTTP/1.0\n\n";
get[312] = "GET /_AuthChangeUrl? HTTP/1.0\n\n";
get[313] = "GET /........./autoexec.bat HTTP/1.0\n\n";
get[314] = "GET /.html/............/autoexec.bat HTTP/1.0\n\n";
get[315] = "GET /......../ HTTP/1.0\n\n";
get[316] = "GET /eatme.idc HTTP/1.0\n\n";
get[317] = "GET /eatme.ida HTTP/1.0\n\n";
get[318] = "GET /eatme.pl HTTP/1.0\n\n";
get[319] = "GET /eatme.idq HTTP/1.0\n\n";
get[320] = "GET /eatme.idw HTTP/1.0\n\n";
get[321] = "GET /default.asp HTTP/1.0\n\n";
get[322] = "GET /default.asp::$DATA HTTP/1.0\n\n";
get[323] = "GET /default.asp. HTTP/1.0\n\n";
get[324] = "GET /samples/ HTTP/1.0\n\n";
get[325] = "GET /photoads/cgi-bin/env.cgi HTTP/1.0\n\n";
get[326] = "GET /photoads/cgi-bin/ HTTP/1.0\n\n";
get[327] = "GET /photoads/ HTTP/1.0\n\n";
get[328] = "GET /session/admnlogin HTTP/1.0\n\n";
get[329] = "GET /session/adminlogin?RCpage=/sysadmin/index.stm HTTP/1.0\n\n";
get[330] = "GET /samples/search/queryhit.htm HTTP/1.0\n\n";
get[331] = "GET /msadc/msadcs.dll HTTP/1.0\n\n";
get[332] = "GET /publisher/|publisher HTTP/1.0\n\n";
get[333] = "GET /PSUser/PSCOErrPage.htm HTTP/1.0\n\n";
get[334] = "GET ../../boot.ini HTTP/1.0\n\n";
get[335] = "GET ../.. HTTP/1.0\n\n";
get[336] = "GET /aux HTTP/1.0\n\n";
get[337] = "GET /status HTTP/1.0\n\n";
get[338] = "GET /status.cgi HTTP/1.0\n\n";
get[339] = "GET /log HTTP/1.0\n\n";
get[340] = "GET /stats HTTP/1.0\n\n";
get[341] = "GET /manage/cgi/cgiproc HTTP/1.0\n\n";
get[342] = "GET /bb-hist.sh HTTP/1.0\n\n";
get[343] = "GET /DataBase/ HTTP/1.0\n\n";
get[344] = "GET /scripts/wa.exe HTTP/1.0\n\n";
get[345] = "GET /cgi-bin/UltraBoard.pl HTTP/1.0\n\n";
get[346] = "GET /cgi-bin/UltraBoard.cgi HTTP/1.0\n\n";
get[347] = "GET /piranha/secure/passwd.php3 HTTP/1.0\n\n";
get[348] = "GET /wwwboard/passwd.txt HTTP/1.0\n\n";
get[349] = "GET /cgi-bin/sojourn.cgi HTTP/1.0\n\n";
get[350] = "GET /cgi-bin/ews HTTP/1.0\n\n";
get[351] = "GET /cgi-bin/dumpenv HTTP/1.0\n\n";
get[352] = "GET /cgi-bin/dfire.cgi HTTP/1.0\n\n";
get[353] = "GET /cgi-bin/spin_client.cgi HTTP/1.0\n\n";
get[354] = "GET /ss HTTP/1.0\n\n";
get[355] = "GET /cgi-bin/echo.bat HTTP/1.0\n\n";
get[356] = "GET /cgi-bin/hello.bat HTTP/1.0\n\n";
get[357] = "GET /scripts/dbman/db.cgi HTTP/1.0\n\n";
get[358] = "GET /cgi-bin/makechanges/easysteps/easysteps.pl HTTP/1.0\n\n";

name[1] = "/cgi-bin/whois_raw.cgi";
name[2] = "/cgi-bin/phf";
name[3] = "/cgi-bin/ls";
name[4] = "/cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi";
name[5] = "/cgi-bin/.fhp";
name[6] = "/cgi-bin/Count.cgi";
name[7] = "/cgi-bin/test-cgi";
name[8] = "/cgi-bin/nph-test-cgi";
name[9] = "/cgi-bin/php.cgi";
name[10] = "/cgi-bin/php-cgi";
name[11] = "/cgi-bin/handler";
name[12] = "/cgi-bin/handler.cgi";
name[13] = "/cgi-bin/minimal.exe";
name[14] = "/cgi-bin/stats.prg";
name[15] = "/cgi-bin/statsconfig";
name[16] = "/cgi-bin/excite";
name[17] = "/cgi-bin/webgais";
name[18] = "/cgi-bin/websendmail";
name[19] = "/cgi-bin/webdist.cgi";
name[20] = "/cgi-bin/faxsurvey";
name[21] = "/cgi-bin/dig.cgi";
name[22] = "/cgi-bin/namedoc.cgi";
name[23] = "/cgi-bin/webplus";
name[24] = "/cgi-bin/bizdb1-search.cgi";
name[25] = "/cgi-bin/htmlscript";
name[26] = "/cgi-bin/pfdispaly.cgi";
name[27] = "/cgi-bin/perl.exe";
name[28] = "/cgi-bin/ppdscgi.exe";
name[29] = "/cgi-bin/cart.pl";
name[30] = "/cgi-bin/bigconf.cgi";
name[31] = "/cgi-bin/wwwboard.pl";
name[32] = "/cgi-bin/www-sql";
name[33] = "/cgi-bin/htsearch";
name[34] = "/cgi-bin/view-source";
name[35] = "/cgi-bin/campas";
name[36] = "/cgi-bin/aglimpse";
name[37] = "/cgi-bin/name32.exe";
name[38] = "/cgi-bin/man.sh";
name[39] = "/cgi-bin/meta.pl";
name[40] = "/cgi-bin/AT-admin.cgi";
name[41] = "/cgi-bin/filemail.pl";
name[42] = "/cgi-bin/maillist.pl";
name[43] = "/cgi-bin/maillist.cgi";
name[44] = "/cgi-bin/jj";
name[45] = "/cgi-bin/info2www";
name[46] = "/cgi-bin/files.pl";
name[47] = "/cgi-bin/finger";
name[48] = "/cgi-bin/finger?@localhost";
name[49] = "/cgi-bin/bnbform.cgi";
name[50] = "/cgi-bin/survey.cgi";
name[51] = "/cgi-bin/AnyForm2";
name[52] = "/cgi-bin/textcounter.pl";
name[53] = "/cgi-bin/classifieds.cgi";
name[54] = "/cgi-bin/classified.cgi";
name[55] = "/cgi-bin/environ.cgi";
name[56] = "/cgi-bin/fpexplore.exe";
name[57] = "/cgi-bin/imagemap.exe";
name[58] = "/cgi-bin/cgitest.exe";
name[59] = "/cgi-bin/anyboard.cgi";
name[60] = "/cgi-bin/webbbs.cgi";
name[61] = "/cgi-bin/visadmin.exe";
name[62] = "/cgi-bin/nph-publish";
name[63] = "/cgi-bin/perlshop.cgi";
name[64] = "/cgi-bin/wrap";
name[65] = "/cgi-bin/cgiwrap";
name[66] = "/cgi-bin/cachemgr.cgi";
name[67] = "/cgi-bin/query";
name[68] = "/cgi-bin/rpm_query";
name[69] = "/cgi-bin/ax.cgi";
name[70] = "/cgi-bin/ax-admin.cgi";
name[71] = "/cgi-bin/architext_query.pl";
name[72] = "/cgi-bin/w3-msql/";
name[73] = "/cgi-bin/add_ftp.cgi";
name[74] = "/cgi-bin/test.bat";
name[75] = "/cgi-bin/input.bat";
name[76] = "/cgi-bin/input2.bat";
name[77] = "/cgi-bin/day5datacopier.cgi";
name[78] = "/cgi-bin/day5datanotifier.cgi";
name[79] = "/cgi-bin/whois.cgi";
name[80] = "/cgi-bin/mlog.phtml";
name[81] = "/cgi-bin/archie";
name[82] = "/cgi-bin/bb-hist.sh";
name[83] = "/cgi-bin/nph-error.pl";
name[84] = "/cgi-bin/post_query";
name[85] = "/cgi-bin/ppdscgi.exe";
name[86] = "/cgi-bin/webmap.cgi";
name[87] = "/cgi-bin/tigvote.cgi";
name[88] = "/cgi-bin/webutils.pl";
name[89] = "/cgi-bin/axs.cgi";
name[90] = "/cgi-bin/responder.cgi";
name[91] = "/cgi-bin/plusmail";
name[92] = "/cgi-bin/passwd.txt";
name[93] = "/cgi-bin/Cgitest.exe";
name[94] = "/cgi-bin/GW5/GWWEB.EXE";
name[95] = "/cgi-bin/webwho.pl";
name[96] = "/cgi-bin/search.cgi";
name[97] = "/cgi-bin/dbmlparser.exe";
name[98] = "/cgi-bin/search/tidfinder.cgi";
name[99] = "/cgi-bin/wa";
name[100] = "/cgi-bin/tablebuild.pl";
name[101] = "/cgi-bin/displayTC.pl";
name[102] = "/cgi-bin/uptime";
name[103] = "/cgi-bin/cvsweb/src/usr.bin/rdist/expand.c";
name[104] = "/cgi-bin/c_download.cgi";
name[105] = "/cgi-bin/download.cgi";
name[106] = "/cgi-bin/program.pl";
name[107] = "/cgi-bin/ntitar.pl";
name[108] = "/cgi-bin/enter.cgi";
name[109] = "/cgi-bin/test.html";
name[110] = "/cgi-bin/test-unix.html";
name[111] = "/cgi-bin/printenv";
name[112] = "/cgi-bin/dasp/fm_shell.asp";
name[113] = "/cgi-bin/cgiback.cgi";
name[114] = "/cgi-bin/unlg1.1";
name[115] = "/cgi-bin/unlg1.2";
name[116] = "/cgi-bin/gH.cgi";
name[117] = "/cgi-bin/rwwwshell.pl";
name[118] = "/cgi-bin/php";
name[119] = "/cgi-bin/perl";
name[120] = "/cgi-bin/wwwboard.cgi";
name[121] = "/cgi-bin/guestbook.cgi";
name[122] = "/cgi-bin/guestbook.pl";
name[123] = "/cgi-bin/passwd";
name[124] = "/cgi-bin/passwd.txt";
name[125] = "/cgi-bin/password";
name[126] = "/cgi-bin/password.txt";
name[127] = "/cgi-bin/flexform.cgi";
name[128] = "/cgi-bin/MachineInfo";
name[129] = "/cgi-bin/lwgate";
name[130] = "/cgi-bin/lwgate.cgi";
name[131] = "/cgi-bin/nlog-smb.cgi";
name[132] = "/cgi-bin/icat";
name[133] = "/cgi-bin/tst.bat";
name[134] = "/cgi-bin/infosrch.cgi";
name[135] = "/cgi-bin/webwho.pl";
name[136] = "/cgi-bin/FormHandler.cgi";
name[137] = "/cgi-bin/cgi-lib.pl";
name[138] = "/com1";
name[139] = "/com2";
name[140] = "/com3";
name[141] = "/con";
name[142] = "/_vti_inf.html";
name[143] = "/_vti_pvt/service.pwd";
name[144] = "/_vti_pvt/users.pwd";
name[145] = "/_vti_pvt/authors.pwd";
name[146] = "/_vti_pvt/administrators.pwd";
name[147] = "/_vti_pvt/writeto.cnf";
name[148] = "/_vti_pvt/svcacl.cnf";
name[149] = "/_vti_pvt/services.cnf";
name[150] = "/_vti_pvt/service.stp";
name[151] = "/_vti_pvt/service.cnf";
name[152] = "/_vti_pvt/access.cnf";
name[153] = "/_vti_bin/shtml.dll";
name[154] = "/_vti_bin/shtml.exe";
name[155] = "/_vti_bin/fpcount.exe";
name[156] = "/_vti_bin/_vti_adm/admin.dll";
name[157] = "/_vti_bin/_vti_aut/author.dll";
name[158] = "/_vti_bin/_vti_aut/dvwssr.dll";
name[159] = "/cgi-dos/args.bat";
name[160] = "/cgi-dos/args.cmd";
name[161] = "/cgi-win/uploader.exe";
name[162] = "/cgi-shl/win-c-sample.exe";
name[163] = "/scripts/c32web.exe";
name[164] = "/scripts/cart32.exe";
name[165] = "/scripts/issadmin/bdir.htr";
name[166] = "/scripts/CGImail.exe";
name[167] = "/scripts/tools/newdsn.exe";
name[168] = "/scripts/fpcount.exe";
name[169] = "/scripts/no-such-file.pl";
name[170] = "/scripts/counter.exe";
name[171] = "/scripts/uploadn.asp";
name[172] = "/scripts/uploadx.asp";
name[173] = "/scripts/upload.asp";
name[174] = "/scripts/repost.asp";
name[175] = "/scripts/postinfo.asp";
name[176] = "/scripts/run.exe";
name[177] = "/scripts/convert.bas";
name[178] = "/scripts/iisadmin/ism.dll";
name[179] = "/scripts/tools/namedrvrs.exe";
name[180] = "/scripts/tools/dsnform.exe";
name[181] = "/scripts/samples/search/webhits.exe";
name[182] = "/scripts/../../cmd.exe";
name[183] = "/scripts/webbbs.exe";
name[184] = "/scripts/samples/ctguestb.idc";
name[185] = "/scripts/samples/details.idc";
name[186] = "/scripts/tools/namedrvs.exe";
name[187] = "/scripts/pu3.pl";
name[188] = "/scripts/proxy/w3proxy.dll";
name[189] = "/scripts/cpshost.dll";
name[190] = "/scripts/Fpadmcgi.exe";
name[191] = "/scripts/iisadmin/bdir.htr";
name[192] = "/scripts/iisadmin/samples/ctgestb.htx";
name[193] = "/scripts/iisadmin/samples/ctgestb.idc";
name[194] = "/scripts/iisadmin/samples/details.htx";
name[195] = "/scripts/iisadmin/samples/details.idc";
name[196] = "/scripts/iisadmin/samples/query.htx";
name[197] = "/scripts/iisadmin/samples/query.idc";
name[198] = "/scripts/iisadmin/samples/register.htx";
name[199] = "/scripts/iisadmin/samples/register.idc";
name[200] = "/scripts/iisadmin/samples/sample.htx";
name[201] = "/scripts/iisadmin/samples/sample.idc";
name[202] = "/scripts/iisadmin/samples/sample2.htx";
name[203] = "/scripts/iisadmin/samples/viewbook.htx";
name[204] = "/scripts/iisadmin/samples/viewbook.idc";
name[205] = "/scripts/iisadmin/tools/ct.htx";
name[206] = "/scripts/iisadmin/tools/ctss.idc";
name[207] = "/scripts/iisadmin/tools/dsnform.exe";
name[208] = "/scripts/iisadmin/tools/namedrvrs.exe";
name[209] = "/scripts/iisadmin/tools/mkilog.exe";
name[210] = "/scripts/iisadmin/tools/newdsn.exe";
name[211] = "/WebShop/templates/cc.txt";
name[212] = "/WebShop/logs/cc.txt";
name[213] = "/WebShop/logs/ck.log";
name[214] = "/config/orders.txt";
name[215] = "/config/import.txt";
name[216] = "/config/checks.txt";
name[217] = "/orders/order.log";
name[218] = "/orders/import.txt";
name[219] = "/orders/checks.txt";
name[220] = "/orders/orders.txt";
name[221] = "/Orders/order.log";
name[222] = "/order/order.log";
name[223] = "/cfdocs/expelval/openfile.cfm";
name[224] = "/cfdocs/expelval/exprcalc.cfm";
name[225] = "/cfdocs/expelval/displayopenedfile.cfm";
name[226] = "/cfdocs/expelval/sendmail.cfm";
name[227] = "/cfdocs/cfmlsyntaxcheck.cfm";
name[228] = "/cfdocs/snippets/fileexist.cfm";
name[229] = "/cfdocs/zero.cfm";
name[230] = "/cfdocs/root.cfm";
name[231] = "/cfdocs/expressions.cfm";
name[232] = "/cfdocs/toxic.cfm";
name[233] = "/cfdocs/mole.cfm";
name[234] = "/cfdocs/exampleapp/publish/admin/addcontent.cfm";
name[235] = "/cfdocs/exampleapp/email/namefile.cfm";
name[236] = "/cfdocs/exampleapp/publish/admin/application.cfm";
name[237] = "/cfdocs/exampleapp/email/application.cfm";
name[238] = "/cfdocs/exampleapp/docs/sourcewindow.cfm";
name[239] = "/cfdocs/examples/parks/detail.cfm";
name[240] = "/cfdocs/examples/cvbeans/beaninfo.cfm";
name[241] = "/cfdocs/cfmlsyntaxcheck.cfm";
name[242] = "/cfdocs/snippets/viewexample.cfm";
name[243] = "/cfdocs/snippets/evaluate.cfm";
name[244] = "/cfappman/index.cfm";
name[245] = "/cfusion/cfapps/forums/forums_.mdb";
name[246] = "/cfusion/cfapps/security/realm_.mdb";
name[247] = "/cfusion/cfapps/forums/data/forums.mdb";
name[248] = "/cfusion/cfapps/security/data/realm.mdb";
name[249] = "/cfusion/database/cfexamples.mdb";
name[250] = "/cfusion/database/cfsnippets.mdb";
name[251] = "/cfusion/database/smpolicy.mdb";
name[252] = "/cfusion/database/cypress.mdb";
name[253] = "/_private/registrations.txt";
name[254] = "/_private/registrations.htm";
name[255] = "/_private/register.txt";
name[256] = "/_private/register.htm";
name[257] = "/_private/orders.txt";
name[258] = "/_private/orders.htm";
name[259] = "/_private/form_results.htm";
name[260] = "/_private/form_results.txt";
name[261] = "/admisapi/fpadmin.htm";
name[262] = "/iissamples/exair/howitworks/codebrws.asp";
name[263] = "/iissamples/sdk/asp/docs/codebrws.asp";
name[264] = "/iissamples/iissamples/query.asp";
name[265] = "/iissamples/exair/search/advsearch.asp";
name[266] = "/iisadmpwd/achg.htr";
name[267] = "/iisadmpwd/aexp.htr";
name[268] = "/iisadmpwd/aexp2.htr";
name[269] = "/iisadmpwd/aexp2b.htr";
name[270] = "/iisadmpwd/aexp3.htr";
name[271] = "/iisadmpwd/aexp4.htr";
name[272] = "/iisadmpwd/aexp4b.htr";
name[273] = "/iisadmpwd/anot.htr";
name[274] = "/iisadmpwd/anot3.htr";
name[275] = "/pw/storemgr.pw";
name[276] = "/config/mountain.cfg";
name[277] = "/orders/mountain.cfg";
name[278] = "/quikstore.cfg";
name[279] = "/PDG_Cart/shopper.conf";
name[280] = "/search97.vts";
name[281] = "/carbo.dll";
name[282] = "/msadc/Samples/SELECTOR/showcode.asp";
name[283] = "/adsamples/config/site.csc";
name[284] = "/Admin_files/order.log";
name[285] = "/mall_log_files/order.log";
name[286] = "/PDG_Cart/order.log";
name[287] = "/doc";
name[288] = "/.html/............./config.sys";
name[289] = "/ssi/envout.bat";
name[290] = "/~root";
name[291] = "/server%20logfile";
name[292] = "/....../autoexec.bat";
name[293] = "/perl/files.pl";
name[294] = "/lpt";
name[295] = "/AdvWorks/equipment/catalog_type.asp";
name[296] = "/ASPSamp/AdvWorks/equipment/catalog_type.asp";
name[297] = "/admin.php3";
name[298] = "/code.php3";
name[299] = "/bb-dnbd/bb-hist.sh";
name[300] = "/domcfg.nsf";
name[301] = "/today.nsf";
name[302] = "/names.nsf";
name[303] = "/catalog.nsf";
name[304] = "/log.nsf";
name[305] = "/domlog.nsf";
name[306] = "/database.nsf";
name[307] = "/secure/.htaccess";
name[308] = "/secure/.wwwacl";
name[309] = "/WebSTAR";
name[310] = "/msadc/msadcs.dll";
name[311] = "/reviews/newpro.cgi";
name[312] = "/_AuthChangeUrl?";
name[313] = "/........./autoexec.bat";
name[314] = "/.html/............/autoexec.bat";
name[315] = "/......../";
name[316] = "/eatme.idc";
name[317] = "/eatme.ida";
name[318] = "/eatme.pl";
name[319] = "/eatme.idq";
name[320] = "/eatme.idw";
name[321] = "/default.asp";
name[322] = "/default.asp::$DATA";
name[323] = "/default.asp.";
name[324] = "/samples/";
name[325] = "/photoads/cgi-bin/env.cgi";
name[326] = "/photoads/cgi-bin/";
name[327] = "/photoads/";
name[328] = "/session/admnlogin";
name[329] = "/session/adminlogin?RCpage=/sysadmin/index.stm";
name[330] = "/samples/search/queryhit.htm";
name[331] = "/msadc/msadcs.dll";
name[332] = "/publisher/|publisher";
name[333] = "/PSUser/PSCOErrPage.htm";
name[334] = "../../boot.ini";
name[335] = "../..";
name[336] = "/aux";
name[337] = "/status";
name[338] = "/status.cgi";
name[339] = "/log";
name[340] = "/stats";
name[341] = "/manage/cgi/cgiproc";
name[342] = "/bb-hist.sh";
name[343] = "/DataBase/";
name[344] = "/scripts/wa.exe";
name[345] = "/cgi-bin/UltraBoard.pl";
name[346] = "/cgi-bin/UltraBoard.cgi";
name[347] = "/piranha/secure/passwd.php3";
name[348] = "/wwwboard/passwd.txt";
name[349] = "/cgi-bin/sojourn.cgi";
name[350] = "/cgi-bin/ews";
name[351] = "/cgi-bin/dumpenv";
name[352] = "/cgi-bin/dfire.cgi";
name[353] = "/cgi-bin/spin_client.cgi";
name[354] = "/ss";
name[355] = "/cgi-bin/echo.bat";
name[356] = "/cgi-bin/hello.bat";
name[357] = "/scripts/dbman/db.cgi";
name[358] = "/cgi-bin/makechanges/easysteps/easysteps.pl";

#ifdef MULTI

fprintf(of,"\nStarted Scanning %s\n", target);

if((hp=(struct hostent *)gethostbyname(target)) == NULL)
{
return;
}
s = socket(AF_INET, SOCK_STREAM, 0);
bzero(&server, sizeof(server));
server.sin_family = AF_INET;
server.sin_port = htons(80);
memcpy((char *)&server.sin_addr, (char *)hp->h_addr,hp->h_length);

if((connect(s, (struct sockaddr *)&server, sizeof(server)))== -1)
{
return;
}
send(s,"HEAD / HTTP/1.0\n\n",17,0);
recv(s,bufferhttp,sizeof(bufferhttp),0);
fprintf(of,"Version:\n%s",bufferhttp);
close(s);

#else

s = socket(AF_INET,SOCK_STREAM, 0);
bcopy(hp->h_addr, (char *)&server.sin_addr, hp->h_length);
server.sin_family = AF_INET;
server.sin_port = htons(80);

if((connect(s, (struct sockaddr *)&server, sizeof(server))) == -1)
{
perror("connect");
exit(1);
}
send(s,"HEAD / HTTP/1.0\n\n",17,0);
recv(s,bufferhttp,sizeof(bufferhttp),0);
fprintf(of,"Scanning:%s\n",host);
fprintf(of,"Version:\n%s",bufferhttp);

#endif

fprintf(of,"The following was found on the Server\n");

for(count=1 ; count != CGIFLAWS ; count++ )
{

#ifdef MULTI

s = socket(AF_INET, SOCK_STREAM, 0);
bzero(&server, sizeof(server));
server.sin_family = AF_INET;
server.sin_port = htons(80);
memcpy((char *)&server.sin_addr, (char *)hp->h_addr,hp->h_length);

if((connect(s, (struct sockaddr *)&server, sizeof(server))) == -1)
{
return;
}

#else


s = socket(AF_INET, SOCK_STREAM, 0);
bcopy(hp->h_addr, (char *)&server.sin_addr, hp->h_length);
server.sin_family = AF_INET;
server.sin_port = htons(80);

if((connect(s, (struct sockaddr *)&server, sizeof(server))) == -1)
{
perror("connect");
exit(1);
}

#endif

for(number=0; number<1024; number++)
{
buffer[number] = '\0';
}
send(s,get[count],strlen(get[count]),0);
recv(s, buffer, sizeof(buffer),0);
cgicheck = strstr(buffer,msg);

if(cgicheck != NULL)
fprintf(of,"%s \n",name[count]);
else
close(s);
}
#ifdef MULTI
return;
#else
return 0;
fclose(of);
#endif
}
Login or Register to add favorites

File Archive:

March 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Mar 1st
    16 Files
  • 2
    Mar 2nd
    0 Files
  • 3
    Mar 3rd
    0 Files
  • 4
    Mar 4th
    32 Files
  • 5
    Mar 5th
    28 Files
  • 6
    Mar 6th
    42 Files
  • 7
    Mar 7th
    17 Files
  • 8
    Mar 8th
    13 Files
  • 9
    Mar 9th
    0 Files
  • 10
    Mar 10th
    0 Files
  • 11
    Mar 11th
    15 Files
  • 12
    Mar 12th
    19 Files
  • 13
    Mar 13th
    21 Files
  • 14
    Mar 14th
    38 Files
  • 15
    Mar 15th
    15 Files
  • 16
    Mar 16th
    0 Files
  • 17
    Mar 17th
    0 Files
  • 18
    Mar 18th
    10 Files
  • 19
    Mar 19th
    32 Files
  • 20
    Mar 20th
    46 Files
  • 21
    Mar 21st
    16 Files
  • 22
    Mar 22nd
    13 Files
  • 23
    Mar 23rd
    0 Files
  • 24
    Mar 24th
    0 Files
  • 25
    Mar 25th
    12 Files
  • 26
    Mar 26th
    31 Files
  • 27
    Mar 27th
    19 Files
  • 28
    Mar 28th
    42 Files
  • 29
    Mar 29th
    0 Files
  • 30
    Mar 30th
    0 Files
  • 31
    Mar 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close