Initial commit (v0.1)

Author: 0xdevalias

LICENSE

@@ -0,0 +1,28 @@
+Original BSD License (BSD with advertising)
+
+Copyright (c) 2013, {Aditya K sood}
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright notice,
+      this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright notice,
+      this list of conditions and the following disclaimer in the documentation
+      and/or other materials provided with the distribution.
+    * Neither the name of IOActive or SecNiche nor the names of its contributors
+      may be used to endorse or promote products derived from this software
+      without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
+INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
+BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+OF THE POSSIBILITY OF SUCH DAMAGE.
+

README

@@ -0,0 +1,114 @@
+-------------------------------------------------
+Sparty - Sharepoint/Frontpage Auditing Tool !
+Authored by: Aditya K Sood |{0kn0ck}@secniche.org  | 2013
+             Twitter:     @AdityaKSood
+Powered by: SecNiche Security Labs !
+------------------------------------------------
+Sparty is an open source tool written in python to audit web applications using sharepoint and frontpage architecture. The motivation behind this tool is to provide an easy and robust way to scrutinize the security configurations of sharepoint and frontpage based web applications. Due to the complex nature of these web administration software, it is required to have a simple and efficient tool that gathers information, check access permissions, dump critical information from default files and perform automated exploitation if security risks are identified. A number of automated scanners fall short of this and Sparty is a solution to that.
+
+
+-----------------------------------
+Functionalities and capabilities !
+-----------------------------------
+1. Sharepoint and Frontpage Version Detection!
+2. Dumping Password from Exposed Configuration Files!
+3. Exposed Sharepoint/Frontpage Services Scan!
+4. Exposed Directory Check!
+5. Installed File and Access Rights Check!
+6. RPC Service Querying!
+7. File Enumeration!
+8. File Uploading Check!
+
+-----------------------------------------------
+Additional notes about working and design
+----------------------------------------------
+1. This version of sparty is written in Python 2.6 (final) running on backtrack 5.0.
+2. This version (v 0.1) primarily includes assessment of configuration flaws.
+3. This version is based on the practical testing and assessment of frontpage & sharepoint.
+
+----------------------------------------------
+Requirements
+----------------------------------------------
+1. This version uses following libraries:
+        import urllib2
+        import re
+        import os, sys
+        import optparse
+        import httplib
+
+2. Python 2.6 is required.
+
+
+-----------------------------------------------
+[+] Things to take care of while using sparty !
+-----------------------------------------------
+
+Please take this into consideration:
+
+1. Always specify https | http explcitly !
+2. Always provide the proper directory structure where sharepoint/frontpage is installed !
+3. Do not specify '/' at the end of url !
+
+--------------------------
+[+] Sparty Help
+--------------------------
+
+	---------------------------------------------------------------
+                                                                 
+          _|_|_|    _|_|_|     _|_|    _|_|_|    _|_|_|_|_|  _|      _|  
+         _|        _|    _|  _|    _|  _|    _|      _|        _|  _|    
+           _|_|    _|_|_|    _|_|_|_|  _|_|_|        _|          _|      
+               _|  _|        _|    _|  _|    _|      _|          _|      
+         _|_|_|    _|        _|    _|  _|    _|      _|          _|      
+
+        SPARTY : Sharepoint/Frontpage Security Auditing Tool!
+        Authored by: Aditya K Sood |{0kn0ck}@secniche.org  | 2013
+        Twitter:     @AdityaKSood
+        
+	--------------------------------------------------------------
+Usage: sparty.py [options]
+
+Options:
+  --version             show program's version number and exit
+  -h, --help            show this help message and exit
+
+  Frontpage::
+    -f FRONTPAGE, --frontpage=FRONTPAGE
+                        <FRONTPAGE = pvt | bin> -- to check access permissions
+                        on frontpage standard files in vti or bin directory!
+
+  Sharepoint::
+    -s SHAREPOINT, --sharepoint=SHAREPOINT
+                        <SHAREPOINT = forms | layouts | catalog> -- to check
+                        access permissions on sharepoint standard files in
+                        forms or layouts or catalog directory!
+
+  Mandatory::
+    -u URL, --url=URL   target url to scan with proper structure
+
+  Information Gathering and Exploit::
+    -v FINGERPRINT, --http_fingerprint=FINGERPRINT
+                        <FINGERPRINT = ms_sharepoint | ms_frontpage> --
+                        fingerprint sharepoint or frontpage based on HTTP
+                        headers!
+    -d DUMP, --dump=DUMP
+                        <DUMP = dump | extract> -- dump credentials from
+                        default sharepoint and frontpage files (configuration
+                        errors and exposed entries)!
+    -l DIRECTORY, --list=DIRECTORY
+                        <DIRECTORY = list | index> -- check directory listing
+                        and permissions!
+    -e EXPLOIT, --exploit=EXPLOIT
+                        EXPLOIT = <rpc_version_check | file_upload |
+                        config_check> -- exploit vulnerable installations by
+                        checking RPC querying and file uploading
+    -i SERVICES, --services=SERVICES
+                        SERVICES = <serv | services> -- checking exposed
+                        services !
+
+  General::
+    -x EXAMPLES, --examples=EXAMPLES
+                        running usage examples !
+
+
+