{"id":13475901,"url":"https://github.com/wireghoul/dotdotpwn","last_synced_at":"2025-05-16T14:05:57.801Z","repository":{"id":2433647,"uuid":"3403237","full_name":"wireghoul/dotdotpwn","owner":"wireghoul","description":"DotDotPwn - The Directory Traversal Fuzzer","archived":false,"fork":false,"pushed_at":"2022-09-28T02:51:18.000Z","size":88,"stargazers_count":1038,"open_issues_count":2,"forks_count":181,"subscribers_count":36,"default_branch":"master","last_synced_at":"2025-04-19T16:00:28.637Z","etag":null,"topics":["fuzzer","penetration-testing","perl","security","traversal"],"latest_commit_sha":null,"homepage":"http://dotdotpwn.blogspot.com/","language":"Perl","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/wireghoul.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.txt","contributing":null,"funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2012-02-10T01:28:05.000Z","updated_at":"2025-04-17T21:52:46.000Z","dependencies_parsed_at":"2022-07-21T04:39:02.848Z","dependency_job_id":null,"html_url":"https://github.com/wireghoul/dotdotpwn","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wireghoul%2Fdotdotpwn","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wireghoul%2Fdotdotpwn/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wireghoul%2Fdotdotpwn/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wireghoul%2Fdotdotpwn/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/wireghoul","download_url":"https://codeload.github.com/wireghoul/dotdotpwn/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254544146,"owners_count":22088807,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["fuzzer","penetration-testing","perl","security","traversal"],"created_at":"2024-07-31T16:01:24.555Z","updated_at":"2025-05-16T14:05:57.732Z","avatar_url":"https://github.com/wireghoul.png","language":"Perl","funding_links":[],"categories":["Uncategorized","\u003ca id=\"683b645c2162a1fce5f24ac2abfa1973\"\u003e\u003c/a\u003e漏洞\u0026\u0026漏洞管理\u0026\u0026漏洞发现/挖掘\u0026\u0026漏洞开发\u0026\u0026漏洞利用\u0026\u0026Fuzzing","Perl","Exploitation","Weapons","Tools"],"sub_categories":["Uncategorized","功能","Directory Traversal","Tools"],"readme":"### DESCRIPTION ###\r\n\r\nDotDotPwn - The Directory Traversal Fuzzer\r\n\r\nIt's a very flexible intelligent fuzzer to discover traversal \r\ndirectory vulnerabilities in software such as HTTP/FTP/TFTP \r\nservers, Web platforms such as CMSs, ERPs, Blogs, etc. \r\n\r\nAlso, it has a protocol-independent module to send the desired \r\npayload to the host and port specified. On the other hand, it \r\nalso could be used in a scripting way using the STDOUT module.\r\n\r\nIt's written in perl programming language and can be run \r\neither under OS X, *NIX or Windows platforms. It's the first Mexican \r\ntool included in BackTrack Linux (BT4 R2).\r\n\r\nFuzzing modules supported in this version: \r\n- HTTP\r\n- HTTP URL\r\n- FTP\r\n- TFTP\r\n- Payload (Protocol independent)\r\n- STDOUT\r\n\r\n\r\n### REQUIREMENTS ###\r\n\r\n- Perl (http://www.perl.org)\r\nProgrammed and tested on Perl 5.8.8 and 5.10\r\n\r\n- Nmap (http://www.nmap.org)\r\nOnly if you plan to use the OS detection feature\r\n(needs root privileges)\r\n\r\nPerl modules:\r\n- Net::FTP\r\n- TFTP (only required if fuzzing TFTP)\r\n- Time::HiRes\r\n- Socket\r\n- IO::Socket\r\n- Getopt::Std\r\n\r\nYou can easily install the missing modules doing the \r\nfollowing as root:\r\n\r\n```\r\n# perl -MCPAN -e \"install \u003cMODULE_NAME\u003e\"\r\n```\r\n\r\nor\r\n\r\n```\r\n# cpan \r\ncpan\u003e install \u003cMODULE_NAME\u003e\r\n```\r\n\r\n\r\n### EXAMPLES ###\r\n\r\nRead EXAMPLES.txt\r\n\r\n\r\n### CONTACT ###\r\n\r\nOfficial Website: http://dotdotpwn.sectester.net\r\nOfficial Email:   dotdotpwn@sectester.net\r\nBugs / Contributions / Improvements: dotdotpwn@sectester.net\r\n\r\n\r\n### AUTHORS ###\r\n\r\n```\r\n Christian Navarrete aka chr1x         Alejandro Hernandez H. aka nitr0us\r\n   http://twitter.com/chr1x              http://twitter.com/nitr0usmx\r\n      chr1x@sectester.net                  nitrousenador@gmail.com\r\n                                         http://www.brainoverflow.org\r\n\r\n CubilFelino Security Research Lab     Chatsubo [(in)Security Dark] Labs\r\n   http://chr1x.sectester.net          http://chatsubo-labs.blogspot.com   \r\n```\r\n\r\n### CHANGE HISTORY ###\r\n\r\nRead CHANGELOG.txt\r\n\r\n### LICENSE ###\r\n\r\n```\r\nDotDotPwn - The Directory Traversal Fuzzer\r\nCopyright (C) 2012 Christian Navarrete and Alejandro Hernandez H.\r\n\r\nThis program is free software: you can redistribute it and/or modify\r\nit under the terms of the GNU General Public License as published by\r\nthe Free Software Foundation, either version 3 of the License, or\r\n(at your option) any later version.\r\n\r\nThis program is distributed in the hope that it will be useful,\r\nbut WITHOUT ANY WARRANTY; without even the implied warranty of\r\nMERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\r\nGNU General Public License for more details.\r\n\r\nYou should have received a copy of the GNU General Public License\r\nalong with this program.  If not, see \u003chttp://www.gnu.org/licenses/\u003e\r\n```\r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwireghoul%2Fdotdotpwn","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fwireghoul%2Fdotdotpwn","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwireghoul%2Fdotdotpwn/lists"}