Welcome to Scribd!

Sparty auditing tool scans Frontpage and Sharepoint

Uploaded by

0% found this document useful (0 votes)

137 views21 pages

Sparty is a frontpage and sharepoint auditing tool written in python. It helps penetration testers to gather information and perform manual analysis later on.

Original Description:

Original Title

From Page

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Sparty is a frontpage and sharepoint auditing tool written in python. It helps penetration testers to gather information and perform manual analysis later on.

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

137 views21 pages

Sparty auditing tool scans Frontpage and Sharepoint

Uploaded by

ggar1133

Sparty is a frontpage and sharepoint auditing tool written in python. It helps penetration testers to gather information and perform manual analysis later on.

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 21

Search inside document

Sparty : A Frontpage and Sharepoint Auditing Tool

Aditya K Sood (@AdityaKSood) BlackHat Arsenal USA - 2013 SecNiche Security Labs

About Me
Senior Security Practitioner IOActive PhD Candidate at Michigan State University
Worked for Armorize, COSEINC, KPMG and others. Active Speaker at Security conferences DEFCON, RSA, SANS, HackInTheBox, OWASP AppSec, BruCon and others LinkedIn - http ://www.linkedin.com/in/adityaks Twitter: @AdityaKSood Website: http://www.secniche.org

Sparty Overview !
Open source tool written in python Assist penetration testers in routine jobs Written in python 2.6 Libraries support
import urllib2 import re import os, sys import optparse import httplib

Use Sparty with Back Track for penetration testing purposes Works on other flavors also

Frontpage Overview !
Frontpage Flavors
Microsoft IIS (.dll) Unix (.exe)

Frontpage Access File Settings

service.pwd frontpage passwords service.grp list of groups administrators.pwd passwords for administrators authors.pwd authors password users.pwd for users password

Frontpage Overview (cont.) !

Frontpage DLLs
_vti_bin/_vti_adm/admin.dll administrative tasks _vti_bin/_vti_aut/author.dll authoring FrontPage webs _vti_bin/shtml.dll browsing component

Frontpage virtual directories

vti_bin _vti_bin\_vti_aut _vti_bin\_vti_adm _vti_pvt _vti_cnf _vti_txt _vti_log.

Frontpage Configuration Flaws !

RPC service querying Command execution using author.dll via RPC File uploading through RPC interface Information disclosure in _vti_pvt, _vti_bin, etc. Information disclosure in HTTP Response Headers Directory indexing Exposed password files in the web directories

Sparty helps the penetration tester to gather information and to perform manual analysis later on !

Sharepoint Configuration Flaws !

Exposed services on the Internet Excessive user Access [ admin.asmx, permissions.asmx] Information disclosure in HTTP Response Headers Publicly available insecure deployments [GOOGLE/SHODAN] Directory indexing Some of the manual tests: Third-party plugin checks Inappropriate deployment of sharepoint services Sparty helps the penetration tester to gather information and to perform manual analysis later on !

Sparty Functionalities !
Sharepoint and Frontpage Version Detection Dumping Password from Exposed Configuration Files Exposed Sharepoint/Frontpage Services Scan Exposed Directory Check Installed File and Access Rights Check RPC Service Querying File Enumeration File Uploading Check

Sparty Options!

Version Fingerprinting !

Dumping Passwords !

Directories Check!

Scanning Access Permissions (1) !

Scanning Access Permissions (2) !

Exposed Services Check !

RPC Querying !

RPC Service Listing !

Try Other Options of Your Own

Sparty : Next Version !

Integration of publicly available vulnerabilities Detection of more advanced payloads for checking admin.dll Additional checks and tests against author.dll Extended payloads

Project Details !
Projects page: http://sparty.secniche.org Documentation: http://sparty.secniche.org/usage.html

Questions and Thanks !

SecNiche Security Labs: http://www.secniche.org BlackHat USA Arsenal 2013 Team IOActive Inc.

Linux Privilege Escalation Overview
Document21 pages
Linux Privilege Escalation Overview
laihiala
No ratings yet
Day12 Client Side Attacks
Document65 pages
Day12 Client Side Attacks
Sheharyar Awan
No ratings yet
Security Audit: Prabhaker Mateti
Document43 pages
Security Audit: Prabhaker Mateti
Anonymous jfiBpepu
No ratings yet
Module 05
Document60 pages
Module 05
Cloud training
No ratings yet
Auditing The Development of Web-Based Applications: Jian Zhen
Document44 pages
Auditing The Development of Web-Based Applications: Jian Zhen
Wajahat Ali
No ratings yet
Threat Modelling
Document48 pages
Threat Modelling
Vaijayanthi
No ratings yet
Web App Security Audit Checklist and Best Practices
Document49 pages
Web App Security Audit Checklist and Best Practices
Akki ash
No ratings yet
Web Application Security: ISACA Bangalore Chapter Aug 2007 Runa Dwibedi
Document49 pages
Web Application Security: ISACA Bangalore Chapter Aug 2007 Runa Dwibedi
Akki ash
No ratings yet
09 - LECTURE Security Testing For Mobile and Web Apps
Document36 pages
09 - LECTURE Security Testing For Mobile and Web Apps
Teng Jun teh
No ratings yet
Codeigniter User Guide Version 1.6.3: Basic Info General Topics Class Reference Helper Reference
Document129 pages
Codeigniter User Guide Version 1.6.3: Basic Info General Topics Class Reference Helper Reference
omponggosong
No ratings yet
Security Operation Center - Operations Development
Document71 pages
Security Operation Center - Operations Development
neelambika ns
No ratings yet
Ten Open-Source Security Testing Tools!
Document7 pages
Ten Open-Source Security Testing Tools!
saporadis
No ratings yet
SOC 40 Tools
Document40 pages
SOC 40 Tools
kingnachi
No ratings yet
Dsouza Fortify 07 Report
Document10 pages
Dsouza Fortify 07 Report
Prasad
No ratings yet
Secure Web Application Ch4
Document82 pages
Secure Web Application Ch4
edwardscpe
No ratings yet
Esapi Jug
Document27 pages
Esapi Jug
aashish.panchal
100% (1)
Fighting Advanced Persistent Threats APT With Open Source Tools
Document21 pages
Fighting Advanced Persistent Threats APT With Open Source Tools
opexxx
No ratings yet
Once Upon A Logon - How Logon Sessions Help Defenders See The Bigger Picture, Jonathan Johnson
Document27 pages
Once Upon A Logon - How Logon Sessions Help Defenders See The Bigger Picture, Jonathan Johnson
Saggy K
No ratings yet
Mastering Yii
From Everand
Mastering Yii
PortwoodII Charles R.
No ratings yet
KALI LINUX: Mastering the Art of Ethical Hacking and Penetration Testing (2023 Guide)
From Everand
KALI LINUX: Mastering the Art of Ethical Hacking and Penetration Testing (2023 Guide)
Kevin Kirk
No ratings yet
WWW Stationx Net Penetration Testing Tools For Kali Linux
Document12 pages
WWW Stationx Net Penetration Testing Tools For Kali Linux
teguebzanga.zida
No ratings yet
Web Hacking 101 Magno Logan
Document44 pages
Web Hacking 101 Magno Logan
binux egaHYFGKIRTJ
No ratings yet
Lecture 9 Website Attacks
Document10 pages
Lecture 9 Website Attacks
Meg Juliet Atieno
No ratings yet
Security
Document66 pages
Security
Husseni Muzkkir
No ratings yet
Back Door Into Java EE Application Servers
Document17 pages
Back Door Into Java EE Application Servers
smjain
No ratings yet
OWASP Tales of Practical Penetration Testing
Document28 pages
OWASP Tales of Practical Penetration Testing
Rakhasha Belmonth
No ratings yet
DroidconTn 2014 Connect Your App To Your Backend
Document14 pages
DroidconTn 2014 Connect Your App To Your Backend
Nacef Labidi
No ratings yet
Shibboleth 2 Workshop
Document64 pages
Shibboleth 2 Workshop
juse71
No ratings yet
Bug bounty: An introduction to ethical hacking programs
Document47 pages
Bug bounty: An introduction to ethical hacking programs
Prince
No ratings yet
Chapter 05 - Application Attacks - Handout
Document59 pages
Chapter 05 - Application Attacks - Handout
Wayne Wayne
No ratings yet
Webcast 116220 PDF
Document76 pages
Webcast 116220 PDF
17ajay
No ratings yet
Chapter 12 - Tools Inventory - Handout
Document62 pages
Chapter 12 - Tools Inventory - Handout
jayantascribe
No ratings yet
Software Audit Static Code Review
Document9 pages
Software Audit Static Code Review
Tolga Ulas
No ratings yet
ProDev Slides DEC2020
Document169 pages
ProDev Slides DEC2020
tharun sai
No ratings yet
Supertimeline+Splunk: Dorumugs and Yet It Does Move
Document40 pages
Supertimeline+Splunk: Dorumugs and Yet It Does Move
ljdwhiz9719
No ratings yet
SQL Injection Via SQLMap
Document10 pages
SQL Injection Via SQLMap
lebahkayu.id
No ratings yet
Bug Bounty Exploit Checklist
Document2 pages
Bug Bounty Exploit Checklist
Daeng Gaming
No ratings yet
Day12 Client Side Attacks
Document65 pages
Day12 Client Side Attacks
Ayush Bhowmick
No ratings yet
Personality Prediction System Through CV Analysis
Document38 pages
Personality Prediction System Through CV Analysis
VVCET - CSE
67% (12)
Intro To Open Web Technology MSC OSCONF 2009 #MOSC2010
Document57 pages
Intro To Open Web Technology MSC OSCONF 2009 #MOSC2010
Harisfazillah Jamel
No ratings yet
Lesson 4 Vulnerabilities and Weaknesses
Document21 pages
Lesson 4 Vulnerabilities and Weaknesses
Patrick Roman
No ratings yet
Factor: 12 App Methodology
Document42 pages
Factor: 12 App Methodology
ijaz afzal
No ratings yet
Benifits of Liferay
Document58 pages
Benifits of Liferay
Zohir Raihan
No ratings yet
A Closer Look On C&C Panels: Seminar On Practical Security Tandhy Simanjuntak
Document39 pages
A Closer Look On C&C Panels: Seminar On Practical Security Tandhy Simanjuntak
sadsada12e12312
No ratings yet
Assessing Web Apps and Tools Like RFProxy and Libwhisker
Document33 pages
Assessing Web Apps and Tools Like RFProxy and Libwhisker
Robi Salcedi
No ratings yet
ITAG - Selenium WebDriver
Document74 pages
ITAG - Selenium WebDriver
binhpham
No ratings yet
Bug Bounty Topics
Document11 pages
Bug Bounty Topics
Aaron Prey
No ratings yet
Rapid Web Development (For Libraries!) With Symfony 2: Justin Clark
Document17 pages
Rapid Web Development (For Libraries!) With Symfony 2: Justin Clark
Jean-yves Lapicque
No ratings yet
Ethical Hacking
Document29 pages
Ethical Hacking
Nawa Hylmi
No ratings yet
Lesson 07
Document41 pages
Lesson 07
Sharon Stein
No ratings yet
Demonstration On Regression Testing
Document4 pages
Demonstration On Regression Testing
Rahul Roy
No ratings yet
SDE-1 and SDE Intern Assignment
Document4 pages
SDE-1 and SDE Intern Assignment
Iam Rohit
No ratings yet
Chromium vs Firefox web browser architecture
Document16 pages
Chromium vs Firefox web browser architecture
Wiwiedh
No ratings yet
WAS Premium Proposal for Advanced Systems
Document12 pages
WAS Premium Proposal for Advanced Systems
shadab umair
No ratings yet
Learning ELK Stack
From Everand
Learning ELK Stack
Chhajed Saurabh
No ratings yet
Robot Framework
Document11 pages
Robot Framework
ANIK CHAKRABORTY
No ratings yet
Web Penetration Testing with Kali Linux - Second Edition
From Everand
Web Penetration Testing with Kali Linux - Second Edition
Ansari Juned Ahmed
No ratings yet
CEHday 1
Document121 pages
CEHday 1
Yo Yo
No ratings yet
Foundation Dynamic Web Pages with Python: Create Dynamic Web Pages with Django and Flask
From Everand
Foundation Dynamic Web Pages with Python: Create Dynamic Web Pages with Django and Flask
David Ashley
No ratings yet
Red Team Course Content v1
Document14 pages
Red Team Course Content v1
happyfeet dash
No ratings yet
EMF Test Report: Ericsson Street Macro 6701 B261 (FCC) : Rapport Utfärdad Av Ackrediterat Provningslaboratorium
Document13 pages
EMF Test Report: Ericsson Street Macro 6701 B261 (FCC) : Rapport Utfärdad Av Ackrediterat Provningslaboratorium
iogdfgkldf iodflgdf
No ratings yet
EJB 3.0 Final Prepared
Document243 pages
EJB 3.0 Final Prepared
jayavardhankoti
No ratings yet
Puley
Document9 pages
Puley
nicolas
No ratings yet
Tutorial 4 - BMCG 2613 - Hydrostatic Force PDF
Document2 pages
Tutorial 4 - BMCG 2613 - Hydrostatic Force PDF
mege1105
No ratings yet
CS5001 Coursework
Document9 pages
CS5001 Coursework
peteligijus
No ratings yet
Pfaff 360 Sewing Machine Instruction Manual
Document55 pages
Pfaff 360 Sewing Machine Instruction Manual
iliiexpugnans
No ratings yet
R12 Period-End Procedures For Oracle Financials E-Business Suite Document 961285
Document3 pages
R12 Period-End Procedures For Oracle Financials E-Business Suite Document 961285
Ravi Birhman
No ratings yet
Oil Gas
Document72 pages
Oil Gas
tony6868
100% (1)
Bondek Design & Construct Manual
Document131 pages
Bondek Design & Construct Manual
Akuma.Gokai7328
100% (12)
PC Pump Manual
Document540 pages
PC Pump Manual
telephonica
No ratings yet
Digital Transformation in The Age of The Customer POV
Document12 pages
Digital Transformation in The Age of The Customer POV
jasmine
No ratings yet
Tivizen Iplug Greek Guide
Document13 pages
Tivizen Iplug Greek Guide
Denexo
No ratings yet
Monopoly - Indian Railways: - Anand Dube - Darshna Chande - Karan Sobti - Sriaditya Kasula - Vinay Chaudhari
Document52 pages
Monopoly - Indian Railways: - Anand Dube - Darshna Chande - Karan Sobti - Sriaditya Kasula - Vinay Chaudhari
KristamRaju
No ratings yet
Lincoln FC Electrodes
Document44 pages
Lincoln FC Electrodes
zmcgain
No ratings yet
Coal Drying Technology and Plant Design
Document12 pages
Coal Drying Technology and Plant Design
Jigar M. Upadhyay
No ratings yet
Fico Exam Guide
Document2 pages
Fico Exam Guide
DANIEL
No ratings yet
Performance of tuned mass dampers under wind loads
Document13 pages
Performance of tuned mass dampers under wind loads
Dhirendra Kumar Pandey
No ratings yet
Electric Rolling Bridge, Scientific American 24 August 1889 p120
Document2 pages
Electric Rolling Bridge, Scientific American 24 August 1889 p120
Rm1262
No ratings yet
Phoenix Contact 3247055 en
Document6 pages
Phoenix Contact 3247055 en
DG
No ratings yet
18,21. Naidian Catalogue
Document31 pages
18,21. Naidian Catalogue
TaQuangDuc
No ratings yet
Mousavi, Aliha, Imani - 2020 - On The Use of Edge Cracked Short Bend Beam Specimen For PMMA Fracture Toughness Testing Under Mixed-Mode
Document1 page
Mousavi, Aliha, Imani - 2020 - On The Use of Edge Cracked Short Bend Beam Specimen For PMMA Fracture Toughness Testing Under Mixed-Mode
Morteza Ataei
No ratings yet
Updated Infra-IIVendor List
Document22 pages
Updated Infra-IIVendor List
abhibaikar
No ratings yet
Dod P 16232F
Document24 pages
Dod P 16232F
Arturo Palacios
No ratings yet
2011 Equipment Packing Instructions
Document3 pages
2011 Equipment Packing Instructions
Nidhi Murthy
No ratings yet
Cooling Tower PDF
Document3 pages
Cooling Tower PDF
maimslap
No ratings yet
ANSI-IsA 77.13.01-1999 Fossil Fuel Power Plant Steam Turbine Bypass System
Document42 pages
ANSI-IsA 77.13.01-1999 Fossil Fuel Power Plant Steam Turbine Bypass System
Arzu Akar
No ratings yet
Eco Web Server III Instruction Manual - Operating
Document0 pages
Eco Web Server III Instruction Manual - Operating
Andrew Maverick
No ratings yet
VP Director Finance Controller in Washington DC Resume Brenda Little
Document2 pages
VP Director Finance Controller in Washington DC Resume Brenda Little
BrendaLittle
No ratings yet
Free Space Optical Communication PDF
Document233 pages
Free Space Optical Communication PDF
Igor Novid
100% (1)
Wacker Silres Ren - 60 - Silicone Resin Solution For Medium Solids or High Solids Heat Resistanc
Document3 pages
Wacker Silres Ren - 60 - Silicone Resin Solution For Medium Solids or High Solids Heat Resistanc
Jameel Ahsan
No ratings yet