{"id":226,"date":"2021-04-25T03:49:26","date_gmt":"2021-04-25T03:49:26","guid":{"rendered":"https:\/\/sirensecurity.io\/blog\/?p=226"},"modified":"2021-07-15T03:04:25","modified_gmt":"2021-07-15T03:04:25","slug":"cadaver-webdav","status":"publish","type":"post","link":"https:\/\/sirensecurity.io\/blog\/cadaver-webdav\/","title":{"rendered":"Cadaver \/ DAVTest        &#038; Webdav."},"content":{"rendered":"\n<div class=\"wp-block-cover has-background-dim\"><img loading=\"lazy\" decoding=\"async\" width=\"3962\" height=\"1686\" class=\"wp-block-cover__image-background wp-image-232\" alt=\"\" src=\"https:\/\/sirensecurity.io\/blog\/wp-content\/uploads\/2021\/04\/1.jpg\" data-object-fit=\"cover\"\/><div class=\"wp-block-cover__inner-container is-layout-flow wp-block-cover-is-layout-flow\">\n<p>S1REN<\/p>\n\n\n\n<p>root@kali:\/# cadaver<br>dav:!&gt;<\/p>\n\n\n\n<p><\/p>\n\n\n\n<p class=\"has-large-font-size\">Unix command lines and WebDAV Clients.<\/p>\n<\/div><\/div>\n\n\n\n<p><strong>DAVTest<\/strong><\/p>\n\n\n\n<p><a rel=\"noreferrer noopener\" href=\"https:\/\/tools.kali.org\/web-applications\/davtest\" target=\"_blank\">https:\/\/tools.kali.org\/web-applications\/davtest<\/a><br><strong>Example Usage:<\/strong><br><br>root@kali:~# <strong>davtest -url<\/strong> http:\/\/192.168.1.209<br>********************************************************<br>&nbsp;Testing DAV connection<br>OPEN&nbsp; &nbsp; &nbsp; &nbsp; SUCCEED:&nbsp; &nbsp; &nbsp; &nbsp; http:\/\/192.168.1.209<br>********************************************************<br>NOTE&nbsp; &nbsp; Random string for this session: B0yG9nhdFS8gox<br>********************************************************<br>&nbsp;Creating directory<br>MKCOL &nbsp; &nbsp; &nbsp; SUCCEED:&nbsp; &nbsp; &nbsp; &nbsp; Created http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox<br>********************************************************<br>&nbsp;Sending test files<br>PUT asp FAIL<br>PUT cgi FAIL<br>PUT txt SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.txt<br>PUT pl&nbsp; SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.pl<br>PUT jsp SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.jsp<br>PUT cfm SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.cfm<br>PUT aspx&nbsp; &nbsp; FAIL<br>PUT jhtml &nbsp; SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.jhtml<br>PUT php SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.php<br>PUT html&nbsp; &nbsp; SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.html<br>PUT shtml &nbsp; FAIL<br>********************************************************<br>&nbsp;Checking for test file execution<br>EXEC&nbsp; &nbsp; txt SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.txt<br>EXEC&nbsp; &nbsp; pl&nbsp; FAIL<br>EXEC&nbsp; &nbsp; jsp FAIL<br>EXEC&nbsp; &nbsp; cfm FAIL<br>EXEC&nbsp; &nbsp; jhtml &nbsp; FAIL<br>EXEC&nbsp; &nbsp; php FAIL<br>EXEC&nbsp; &nbsp; html&nbsp; &nbsp; SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.html<\/p>\n\n\n\n<p><strong>********************************************************<\/strong><br>\/usr\/bin\/<strong>davtest Summary:<\/strong><br>Created: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox<br>PUT File: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.txt<br>PUT File: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.pl<br>PUT File: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.jsp<br>PUT File: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.cfm<br>PUT File: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.jhtml<br>PUT File: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.php<br>PUT File: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.html<br>Executes: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.txt<br>Executes: http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.html<\/p>\n\n\n\n<p><strong>********************************************************<\/strong><\/p>\n\n\n\n<p>+ <strong><span style=\"text-decoration: underline;\">Cadaver<\/span><\/strong><br><strong><a rel=\"noreferrer noopener\" href=\"http:\/\/www.carnal0wnage.com\/papers\/dirtysecrets-v2-derbycon2012.pdf\" target=\"_blank\">carnal0wnage<\/a><\/strong> <strong>WebDAV:<\/strong><br>+ <a rel=\"noreferrer noopener\" href=\"http:\/\/www.carnal0wnage.com\/papers\/dirtysecrets-v2-derbycon2012.pdf\" target=\"_blank\">http:\/\/www.carnal0wnage.com\/papers\/dirtysecrets-v2-derbycon2012.pdf<\/a><br>net use \\ip\\documents\\ \/User:Guest<br>copy \\ip\\documents\\myexe.exe myexe.exe<br><br><\/p>\n","protected":false},"excerpt":{"rendered":"<p>DAVTest https:\/\/tools.kali.org\/web-applications\/davtestExample Usage: root@kali:~# davtest -url http:\/\/192.168.1.209********************************************************&nbsp;Testing DAV connectionOPEN&nbsp; &nbsp; &nbsp; &nbsp; SUCCEED:&nbsp; &nbsp; &nbsp; &nbsp; http:\/\/192.168.1.209********************************************************NOTE&nbsp; &nbsp; Random string for this session: B0yG9nhdFS8gox********************************************************&nbsp;Creating directoryMKCOL &nbsp; &nbsp; &nbsp; SUCCEED:&nbsp; &nbsp; &nbsp; &nbsp; Created http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox********************************************************&nbsp;Sending test filesPUT asp FAILPUT cgi FAILPUT txt SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.txtPUT pl&nbsp; SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.plPUT jsp SUCCEED:&nbsp; &nbsp; http:\/\/192.168.1.209\/DavTestDir_B0yG9nhdFS8gox\/davtest_B0yG9nhdFS8gox.jspPUT cfm SUCCEED:&nbsp; &nbsp; [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":232,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[21,26,25,22,17,4,24,23],"class_list":["post-226","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-s1ren","tag-cadaver","tag-carnal0wnage","tag-command-line","tag-davtest","tag-kali-linux","tag-s1ren","tag-uniz-client","tag-webdav"],"_links":{"self":[{"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/posts\/226","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/comments?post=226"}],"version-history":[{"count":3,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/posts\/226\/revisions"}],"predecessor-version":[{"id":419,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/posts\/226\/revisions\/419"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/media\/232"}],"wp:attachment":[{"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/media?parent=226"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/categories?post=226"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sirensecurity.io\/blog\/wp-json\/wp\/v2\/tags?post=226"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}