11 October 2011 | 9,758 views

File Disclosure Browser – Tool To Explore .DS_Store Files

Check For Vulnerabilities with Acunetix

The File Disclosure Browser takes .DS_Store files found on websites and parses through them to find a list of all potential files in the directory. It can then either just display the URLs for the files or if you give it a proxy it can browse to the files itself.

The author wrote it after reading the PDC blog post on passing DirBuster through Burp and figured doing the same thing for the contents of DS_Store files would be useful. He also plans to extend this to work with other disclosure files, including dwsync.xml files created by Dreamweaver and possibly some of the code repository files, cvs, svn, git etc.

Requirements

To run the app you need to install the CPAN module, you can do this by becoming root, entering the CPAN shell then asking it to do the install:

You can download File Disclosure Browser v1.0 here:

fdb_1.0.tar.bz2

Or read more here.



Recent in Forensics:
- HoneyDrive 3 Released – The Premier Honeypot Bundle Distro
- Sysdig – Linux System Troubleshooting Tool
- HoneyDrive Desktop v0.2 Released – Honeypot LiveCD

Related Posts:
- LFIMAP – Scan For Files Vulnerable To LFI (Local File Inclusion)
- Month of Browser Bugs (MoBB)
- Origami – Parse, Analyze & Forge PDF Documents

Most Read in Forensics:
- NetworkMiner – Passive Sniffer & Packet Analysis Tool for Windows - 65,706 views
- raw2vmdk – Mount Raw Hard Disk (dd) Images As VMDK Virtual Disks - 29,985 views
- sslsniff v0.6 Released – SSL MITM Tool - 26,917 views

Low-cost VPS Hosting

Comments are closed.