常见文件信息泄露
来自三线的随记
网站源码备份文件后缀
- tar
- tar.gz
- zip
- rar
网站源码备份文件名
- web
- website
- backup
- back
- www
- wwwroot
- temp
- beifen
- bf
- bak
vim
- .xxx.yyy.swp
- xxx.yyy~
MAC os
.DS_Store
exp: https://github.com/lijiejie/ds_store_exp
python2
.git
directory: .git
exp: https://github.com/lijiejie/GitHack
.idea
directory: .idea
https://github.com/lijiejie/idea_exploit
信息泄露扫描器
- BBScan https://github.com/lijiejie/BBScan
- AWVS
- AppScan
- ......