webdav
Last updated
Was this helpful?
Last updated
Was this helpful?
WEBDAV
Set Up WebDav server to host malicious or fun....files
pip install wsgidav
pip install cheroot
$ sudo apt-get update $ sudo apt-get install software-properties-common $ sudo add-apt-repository ppa:certbot/certbot $ sudo apt-get update $ sudo apt-get install certbot
$ mkdir -p /tmp/webdav/share
certbot certonly --webroot -w /tmp/webdav/share -d carrot.ignorelist.com
Add The following to your webdav.conf file ssl_certificate = "/etc/letsencrypt/live/carrot.ignorelist.com/cert.pem" ssl_certificate_chain = "/etc/letsencrypt/live/carrot.ignorelist.com/fullchain.pem" ssl_private_key = "/etc/letsencrypt/live/carrot.ignorelist.com/privkey.pem"
Run
wsgidav --host=0.0.0.0 --port=443 --config webdav.conf --root ./share/
root@kali:~# davtest -url
Testing DAV connection OPENSUCCEED:
NOTERandom string for this session: pIzR5HdI
Creating directory MKCOLSUCCEED:Created
Sending test files PUThtmlSUCCEED: PUTcgiFAIL PUTcfmSUCCEED: PUTaspxSUCCEED: PUTaspFAIL PUTtxtSUCCEED: PUTshtmlFAIL PUTjhtmlSUCCEED: PUTjspSUCCEED: PUTphpSUCCEED: PUTplSUCCEED:
Checking for test file execution EXEChtmlSUCCEED: EXECcfmFAIL EXECaspxFAIL EXECtxtSUCCEED: EXECjhtmlFAIL EXECjspFAIL EXECphpFAIL EXECplFAIL
/usr/bin/davtest Summary: Created: PUT File: PUT File: PUT File: PUT File: PUT File: PUT File: PUT File: PUT File: Executes: Executes:
Another tool is cadaver
Available commands: ls cd pwd put get mget mput edit less mkcol cat delete rmcol copy move lock unlock discover steal showlocks version checkin checkout uncheckout history label propnames chexec propget propdel propset search set open close echo quit unset lcd lls lpwd logout help describe about
root@kali:~# cadaver <----this will connect you to the webdav site itself.