|
Title: Pen Testing Sharepoint Post by: T_Bone on October 01, 2010, 08:07:52 AM Ok, So I have an assignment to pentest a sharepoint site... I will obviously do the necessary like I would in any other test but want to know if anyone has any tips or resources they can point me to that may help...
Cheers Title: Re: Pen Testing Sharepoint Post by: ajohnson on October 01, 2010, 08:45:28 AM Scavenge for info first and foremost; people post all kinds of useful tidbits. Always do recon before attempting any fancy techniques.
Title: Re: Pen Testing Sharepoint Post by: tturner on October 01, 2010, 08:59:45 AM I forgot where I got this list, but here are some paths of note you may wish to try. You will need to plug any subsite paths before them:
/_layouts/viewlsts.aspx /forms/allitems.aspx /forms/webfldr.aspx /forms/mod-view.aspx /forms/my-sub.aspx /pages/categoryresults.aspx /categories/viewcategory.aspx /sitedirectory /editdocs.aspx /workflowtasks/allitems.aspx /lists/tasks/ /categories/allcategories.aspx /categories/SOMEOTHERDIR/allcategories.aspx /mycategories.aspx /lists/ /allitems.aspx /default.aspx /allposts.aspx /archive.aspx /byauthor.aspx /calendar.aspx /mod-view.aspx /myposts.aspx /my-sub.aspx /allcomments.aspx /mycomments.aspx /_layouts/userdisp.aspx /_layouts/help.aspx Title: Re: Pen Testing Sharepoint Post by: T_Bone on October 05, 2010, 04:45:32 AM I would expect the document below that contains 20 pages to be SUPERB at that price!
http://www.gartner.com/DisplayDocument?id=894420
Powered by SMF 1.1.18 |
SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com |