├── README.md ├── assets ├── bs_response.jpg ├── photo_2023-10-10_23-42-05.jpg ├── photo_2023-10-10_23-42-16.jpg ├── photo_2023-10-10_23-42-26.jpg ├── photo_2023-10-10_23-42-36.jpg ├── photo_2023-10-10_23-42-48.jpg ├── photo_2023-10-10_23-43-02.jpg ├── photo_2023-10-10_23-43-12.jpg ├── photo_2023-10-10_23-43-25.jpg ├── test └── vhosts_brute.webp ├── god.txt ├── iis.txt ├── iisfinal.txt ├── templates ├── CVE-2017-7269.yaml ├── CVE-2017-9140.yaml ├── CVE-2019-10068.yaml ├── CVE-2020-16952.yaml ├── CVE-2020-24903.yaml ├── CVE-2021-3378.yaml ├── CVE-2022-25369.yaml ├── CVE-2023-34362.yaml ├── CVE-2023-35813.yaml ├── CVE-2023-36934.yaml ├── aspx-debug-mode.yaml ├── chanjet-tplus-checkmutex-sqli.yaml ├── default-asp-net-page.yaml ├── default-iis7-page.yaml ├── default-windows-server-page.yaml ├── devexpress-detect.yaml ├── elmah-log-file.yaml ├── favicon-detect.yaml ├── fingerprinthub-web-fingerprints.yaml ├── iis-shortname.yaml ├── microsoft-iis-8.yaml ├── microsoft-iis-version.yaml ├── microsoft-sharepoint-detect.yaml ├── open-proxy-internal.yaml ├── open-proxy-localhost.yaml ├── tech-detect.yaml ├── telerik-fileupload-detect.yaml ├── trace-axd-detect.yaml ├── waf-detect.yaml └── waf-fuzz.yaml ├── web.config └── xss.txt /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/README.md -------------------------------------------------------------------------------- /assets/bs_response.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/bs_response.jpg -------------------------------------------------------------------------------- /assets/photo_2023-10-10_23-42-05.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/photo_2023-10-10_23-42-05.jpg -------------------------------------------------------------------------------- /assets/photo_2023-10-10_23-42-16.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/photo_2023-10-10_23-42-16.jpg -------------------------------------------------------------------------------- /assets/photo_2023-10-10_23-42-26.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/photo_2023-10-10_23-42-26.jpg -------------------------------------------------------------------------------- /assets/photo_2023-10-10_23-42-36.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/photo_2023-10-10_23-42-36.jpg -------------------------------------------------------------------------------- /assets/photo_2023-10-10_23-42-48.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/photo_2023-10-10_23-42-48.jpg -------------------------------------------------------------------------------- /assets/photo_2023-10-10_23-43-02.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/photo_2023-10-10_23-43-02.jpg -------------------------------------------------------------------------------- /assets/photo_2023-10-10_23-43-12.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/photo_2023-10-10_23-43-12.jpg -------------------------------------------------------------------------------- /assets/photo_2023-10-10_23-43-25.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/photo_2023-10-10_23-43-25.jpg -------------------------------------------------------------------------------- /assets/test: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /assets/vhosts_brute.webp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/assets/vhosts_brute.webp -------------------------------------------------------------------------------- /god.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/god.txt -------------------------------------------------------------------------------- /iis.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/iis.txt -------------------------------------------------------------------------------- /iisfinal.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/iisfinal.txt -------------------------------------------------------------------------------- /templates/CVE-2017-7269.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2017-7269.yaml -------------------------------------------------------------------------------- /templates/CVE-2017-9140.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2017-9140.yaml -------------------------------------------------------------------------------- /templates/CVE-2019-10068.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2019-10068.yaml -------------------------------------------------------------------------------- /templates/CVE-2020-16952.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2020-16952.yaml -------------------------------------------------------------------------------- /templates/CVE-2020-24903.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2020-24903.yaml -------------------------------------------------------------------------------- /templates/CVE-2021-3378.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2021-3378.yaml -------------------------------------------------------------------------------- /templates/CVE-2022-25369.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2022-25369.yaml -------------------------------------------------------------------------------- /templates/CVE-2023-34362.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2023-34362.yaml -------------------------------------------------------------------------------- /templates/CVE-2023-35813.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2023-35813.yaml -------------------------------------------------------------------------------- /templates/CVE-2023-36934.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/CVE-2023-36934.yaml -------------------------------------------------------------------------------- /templates/aspx-debug-mode.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/aspx-debug-mode.yaml -------------------------------------------------------------------------------- /templates/chanjet-tplus-checkmutex-sqli.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/chanjet-tplus-checkmutex-sqli.yaml -------------------------------------------------------------------------------- /templates/default-asp-net-page.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/default-asp-net-page.yaml -------------------------------------------------------------------------------- /templates/default-iis7-page.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/default-iis7-page.yaml -------------------------------------------------------------------------------- /templates/default-windows-server-page.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/default-windows-server-page.yaml -------------------------------------------------------------------------------- /templates/devexpress-detect.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/devexpress-detect.yaml -------------------------------------------------------------------------------- /templates/elmah-log-file.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/elmah-log-file.yaml -------------------------------------------------------------------------------- /templates/favicon-detect.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/favicon-detect.yaml -------------------------------------------------------------------------------- /templates/fingerprinthub-web-fingerprints.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/fingerprinthub-web-fingerprints.yaml -------------------------------------------------------------------------------- /templates/iis-shortname.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/iis-shortname.yaml -------------------------------------------------------------------------------- /templates/microsoft-iis-8.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/microsoft-iis-8.yaml -------------------------------------------------------------------------------- /templates/microsoft-iis-version.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/microsoft-iis-version.yaml -------------------------------------------------------------------------------- /templates/microsoft-sharepoint-detect.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/microsoft-sharepoint-detect.yaml -------------------------------------------------------------------------------- /templates/open-proxy-internal.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/open-proxy-internal.yaml -------------------------------------------------------------------------------- /templates/open-proxy-localhost.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/open-proxy-localhost.yaml -------------------------------------------------------------------------------- /templates/tech-detect.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/tech-detect.yaml -------------------------------------------------------------------------------- /templates/telerik-fileupload-detect.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/telerik-fileupload-detect.yaml -------------------------------------------------------------------------------- /templates/trace-axd-detect.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/trace-axd-detect.yaml -------------------------------------------------------------------------------- /templates/waf-detect.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/waf-detect.yaml -------------------------------------------------------------------------------- /templates/waf-fuzz.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/templates/waf-fuzz.yaml -------------------------------------------------------------------------------- /web.config: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/web.config -------------------------------------------------------------------------------- /xss.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/reewardius/iis-pentest/HEAD/xss.txt --------------------------------------------------------------------------------