Find passwords stored in the ftp client with WS_FTP.ini

ws_ftp.ini is a configuration file for a popular FTP client that stores usernames, (weakly) encoded passwords, sites and directories that the user can store for later reference. These should not be on the web!

 
[adsense:block:adcontenuto]
 
That's some good stuff. Just copy/paste the text into your own WS FTP ini file and you're good as gold (assuming you're using the same version). Don't forget - even if they have taken the file offline, use the "cache:FULL_URL/wsftp.ini" to see the contents.
probably one of the best exploits I have seen in a long time, when I did it there were about 20 vulnerable computers, just recently there was 4 so I hope whitehats got to this before anyone else. really nice !!
 
To see results; just write in the (http://www.google.com/) search engine the code:
 
intitle:index.of ws_ftp.ini
 
Second Version:
 
This search is a cleanup of previous. It uses "parent directory" to avoid results other than directory listings.
 
WS_FTP.ini is a configuration file for a popular win32 FTP client that stores usernames and weakly encoded passwords.
 
To see results; just write in the (http://www.google.com/) search engine the code:
 
filetype:ini ws_ftp pwd
 
Or
 
"index of/" "ws_ftp.ini" "parent directory"
 
[adsense:block:adcontenuto]

 

Similar Content

Study and monitoring of the SERP with Advanced Web Ranking

advance serp ranking

Companies are increasingly aware of the importance of the Internet to promote their business and more and more evident that the mere creation of a corporate website is not enough: you need to define an online identity of its products and to make sure that they are visible to network users.
SEO: