Google Search: filetype:bak inurl:”htaccess|passwd|shadow|htusers”
l0om rates this entry 8 out of 10.
Submitted: 2004-08-14 00:00:00
Added by: l0om
This will search for backup files (*.bak) created by some editors or even by the administrator himself (before activating a new version). Every attacker knows that changing the extenstion of a file on a webserver can have ugly consequences.
2006-02-04 11:43:37 (D-Fault): Massive Results.
Very neat passwd. files, just needed to decrypt it.
JTR does the job.