Skip to content
/ Backup-Finder Public
forked from moeinfatehi/Backup-Finder

A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP OTG-CONFIG-004)

License

GPL-3.0 license
1 star 29 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tk-t0n0y/Backup-Finder

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
nbproject
nbproject
 
 
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
build.xml
build.xml
 
 
manifest.mf
manifest.mf
 
 

Repository files navigation

Backup-Finder

A burp suite extension that reviews backup, old, temporary and unreferenced files on the web server for sensitive information (OWASP OTG-CONFIG-004)

Why should I use this extension?

As I checked some tools in this field, I realized that almost all of the tools use only static payloads (they use built-in dictionaries) and they don't generate dynamic payloads based on target which is being tested.

For example, suppose this is hierarchy tree of our web application:

/
├───upload    #Dir
├───├───index.php
├───├───index.php~
├───├───index.php.bkup
├───├───upload.zip
├───└───users    #Dir
├───────├───index.php
├───────├───catalog.zip
├───WeirdDirName    #Dir
├───├───index.php
├───├───captcha.php
├───├───captcha.php.old
├───WeirdDirName.tar.gz

and this is the result of a crawler:
/
├───upload    #Dir
├───├─── /
├───└───users    #Dir
├───────├─── /
├───WeirdDirName    #Dir
├───├─── /
├───├───captcha.php

This extension will find all backup, old and temp files in this scenario:

  • /upload/index.php~
  • /upload/index.php.bkup
  • /upload/upload.zip
  • /upload/catalog.zip
  • /upload/
  • /WeirdDirName.tar.gz
  • /WeirdDirName/captcha.php.old

Here is a screenshot of extension's results.

Quick Start

  1. Select a request of a target host from any tab of burp suite
  2. In "backupFinder -> Finder -> options" tab, apply your configurations.
  3. Go to "backupFinder -> Finder -> Finder" tab and click on "start" button.

Some of the options

These options can be used to customize the detection:

  • Level: Level of tests to perform (1-5, default 3)
  • Thread: num of threads (1-50, default 10)
  • Built-in dictionary: there is a built-in dictionary containing most used directory and file names to be used for static payload generation.
  • Loadable dictionary: you can use your own dictionary file for static payload generation.
  • HTTP method: HTTP method to be used in requests (HEAD, GET)(default: Head)
  • Includable extensions
  • Excludable extensions
  • Includable status codes
  • Excludable status codes

Disclaimer

This program is for Educational purpose ONLY. Do not use it without permission. The usual disclaimer applies, especially the fact that I'm not liable for any damages caused by the direct or indirect use of the information or functionality provided by these programs. The author or any Internet provider bears NO responsibility for content or misuse of these programs or any derivatives thereof. By using these programs you accept the fact that any damage (data loss, system crash, system compromise, etc.) caused by the use of this program is not my responsibility.

Contact

If you have any further questions, please don't hesitate to contact me via my twitter account.

About

A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP OTG-CONFIG-004)

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Java 100.0%