seabreg / sparty Goto Github PK
View Code? Open in Web Editor NEWThis project forked from alias1/sparty
Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]
Home Page: http://sparty.secniche.org/
License: Other
sparty's Introduction
-------------------------------------------------
Sparty - Sharepoint/Frontpage Auditing Tool !
Authored by: Aditya K Sood |{0kn0ck}@secniche.org | 2013
Twitter: @AdityaKSood
Powered by: SecNiche Security Labs !
------------------------------------------------
Sparty is an open source tool written in python to audit web applications using sharepoint and frontpage architecture. The motivation behind this tool is to provide an easy and robust way to scrutinize the security configurations of sharepoint and frontpage based web applications. Due to the complex nature of these web administration software, it is required to have a simple and efficient tool that gathers information, check access permissions, dump critical information from default files and perform automated exploitation if security risks are identified. A number of automated scanners fall short of this and Sparty is a solution to that.
-----------------------------------
Functionalities and capabilities !
-----------------------------------
1. Sharepoint and Frontpage Version Detection!
2. Dumping Password from Exposed Configuration Files!
3. Exposed Sharepoint/Frontpage Services Scan!
4. Exposed Directory Check!
5. Installed File and Access Rights Check!
6. RPC Service Querying!
7. File Enumeration!
8. File Uploading Check!
-----------------------------------------------
Additional notes about working and design
----------------------------------------------
1. This version of sparty is written in Python 2.6 (final) running on backtrack 5.0.
2. This version (v 0.1) primarily includes assessment of configuration flaws.
3. This version is based on the practical testing and assessment of frontpage & sharepoint.
----------------------------------------------
Requirements
----------------------------------------------
1. This version uses following libraries:
import urllib2
import re
import os, sys
import optparse
import httplib
2. Python 2.6 is required.
-----------------------------------------------
[+] Things to take care of while using sparty !
-----------------------------------------------
Please take this into consideration:
1. Always specify https | http explcitly !
2. Always provide the proper directory structure where sharepoint/frontpage is installed !
3. Do not specify '/' at the end of url !
--------------------------
[+] Sparty Help
--------------------------
---------------------------------------------------------------
_|_|_| _|_|_| _|_| _|_|_| _|_|_|_|_| _| _|
_| _| _| _| _| _| _| _| _| _|
_|_| _|_|_| _|_|_|_| _|_|_| _| _|
_| _| _| _| _| _| _| _|
_|_|_| _| _| _| _| _| _| _|
SPARTY : Sharepoint/Frontpage Security Auditing Tool!
Authored by: Aditya K Sood |{0kn0ck}@secniche.org | 2013
Twitter: @AdityaKSood
--------------------------------------------------------------
Usage: sparty.py [options]
Options:
--version show program's version number and exit
-h, --help show this help message and exit
Frontpage::
-f FRONTPAGE, --frontpage=FRONTPAGE
<FRONTPAGE = pvt | bin> -- to check access permissions
on frontpage standard files in vti or bin directory!
Sharepoint::
-s SHAREPOINT, --sharepoint=SHAREPOINT
<SHAREPOINT = forms | layouts | catalog> -- to check
access permissions on sharepoint standard files in
forms or layouts or catalog directory!
Mandatory::
-u URL, --url=URL target url to scan with proper structure
Information Gathering and Exploit::
-v FINGERPRINT, --http_fingerprint=FINGERPRINT
<FINGERPRINT = ms_sharepoint | ms_frontpage> --
fingerprint sharepoint or frontpage based on HTTP
headers!
-d DUMP, --dump=DUMP
<DUMP = dump | extract> -- dump credentials from
default sharepoint and frontpage files (configuration
errors and exposed entries)!
-l DIRECTORY, --list=DIRECTORY
<DIRECTORY = list | index> -- check directory listing
and permissions!
-e EXPLOIT, --exploit=EXPLOIT
EXPLOIT = <rpc_version_check | file_upload |
config_check> -- exploit vulnerable installations by
checking RPC querying and file uploading
-i SERVICES, --services=SERVICES
SERVICES = <serv | services> -- checking exposed
services !
services !
Authentication [devalias.net]:
-a AUTHENTICATION, --auth-type=AUTHENTICATION
AUTHENTICATION = <ntlm> -- Authenticate with NTLM
user/pass !
General::
-x EXAMPLES, --examples=EXAMPLES
running usage examples !
sparty's People
Contributors
Watchers
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.