HTExploit: Open Source Tool to Bypass Standard Directory Protection!
HTExploit (HiperText access Exploit) is an open-source tool written in Python that exploits a weakness in the way that .htaccess files can be configured to protect a web directory with an authentication process. By using this tool anyone would be able to list the contents of a directory protected this way, bypassing the authentication process.
The tool provides modularity, by allowing the tester to fully perform an analysis on the protected website of the following attacks: SQL Injection, Local File Inclusion, Remote File Inclusion and others.
The main characteristic of this tool is that all of the analyses performed are done inside the protected directory, not from the publicly accessible site.
Features
x Multiples modules to execute.
x Save the output to an specify directory.
x HTML Reporting.
x Use multiples wordlist to probe against htaccess bypassing.
x Mode verbose for a full detailed information.
x Multiples modules to execute.
x Save the output to an specify directory.
x HTML Reporting.
x Use multiples wordlist to probe against htaccess bypassing.
x Mode verbose for a full detailed information.
detect - Dete cts if the directory is vulnerable.
full - Runs a dictionary attack on the URL, to find protected PHP files.Requirementsx Python
SUPPORTED OPERATING SYSTEMS
HTExploit is written in Python and should run on many different operating systems.
Windows 7 / Vista / XP
x Downlad Python
x Unzip the tar.gz
x Run HTExploit:
x Downlad Python
x Unzip the tar.gz
x Run HTExploit:
python htexploitBackTrack 5
x Install Python:
x Unzip the tar.gz
x Run HTExploit:
x Install Python:
apt-get install python x Unzip the tar.gz
x Run HTExploit:
$python htexploitUSAGEAfter executed HTExploit, you will see something like:
_ _ _______ ______ _ _ _
| | | | |__ __| | ____| | | (_) | |
| |__| | | | | |__ __ __ _ __ | | ___ _ | |_
| __ | | | | __| \ \/ / | '_ \ | | / _ \ | | | __|
| | | | | | | |____ > < | |_) | | | | (_) | | | | |_
|_| |_| |_| |______| /_/\_\ | .__/ |_| \___/ |_| \__|
| |
|_| v1.0
Usage: htexploit -u [URL] [options]
Options:
-h, --help show this help message and exit
-m MODULE, --module=MODULE
Select the module to run (Default: detect)
-u URL, --url=URL **REQUIRED** - Specify the URL to scan
-o OUTPUT, --output=OUTPUT
Specify the output directory
-w WORDLIST, --wordlist=WORDLIST
Specify the wordlist to use
-v, --verbose Be verbose
Example:
python htexploit -u 10.10.10.10 -w FullList -o FolderPATHLICENSING
HTExploit is licensed under the GNU General Public License Version 2.↑CHANGE LOG
View the complete CHANGELOG.INTERESTING LINKS
x Apache Tutorial: .htaccess files
x Common Configuration Problems: Issue #81 (090597)
x HTTP Authentication: Basic and Digest Access Authentication
x Authentication, Authorization and Access Control
x Apache Module mod_allowmethods
x Password Formats
x Common Configuration Problems: Issue #81 (090597)
x HTTP Authentication: Basic and Digest Access Authentication
x Authentication, Authorization and Access Control
x Apache Module mod_allowmethods
x Password Formats
- Current Version: 0.7 Beta
- Code Name: Fernet
- Release Date: 07.25.2012
Download HTExploit:
HTExploit v0.7 Beta - HTExploit_v0.7b.tar.gz
Visit website -
http://www.mkit.com.ar/labs/htexploit/
For More Information related this July2012 Back-Hat White Papers-
http://media.blackhat.com/bh-us-12/Turbo/Soler/BH_US_12_Katz_Soler_HTExploit_WP.pdf
http://media.blackhat.com/bh-us-12/Turbo/Soler/BH_US_12_Katz_Soler_HTExploit_Slides.pdf
https://www.owasp.org/images/f/fa/MSoler_MKatz_HTExploit.pdf
http://www.mkit.com.ar/labs/htexploit/
For More Information related this July2012 Back-Hat White Papers-
http://media.blackhat.com/bh-us-12/Turbo/Soler/BH_US_12_Katz_Soler_HTExploit_WP.pdf
http://media.blackhat.com/bh-us-12/Turbo/Soler/BH_US_12_Katz_Soler_HTExploit_Slides.pdf
https://www.owasp.org/images/f/fa/MSoler_MKatz_HTExploit.pdf
