Fast Track

Download the full program in PDF.

There's Nothing so Permanent as Temporary

Author: Dmitry Bumov

How to obtain a list of files in a directory via a single HTTP request without a directory index? Is it possible to view a script’s source code on a working site? What if to gain database or FTP passwords? Today many people neglect their temporary files and make configuration mistakes, facilitating attackers’ access to sensitive information.

  • Language
  • Russian

Dmitry Bumov is a security researcher and pentester at ONsec.

Dmitry Bumov Dmitry Bumov

Back to the list