From 98d4dd6db119efc30169f5ee32a9e1df39aa842d Mon Sep 17 00:00:00 2001
From: Eldar Marcussen <wireghoul@justanotherhacker.com>
Date: Wed, 4 Dec 2013 10:50:34 +1100
Subject: [PATCH] Create pillage.lst

List of file paths for use in traversal attacks
---
 linux/pillage.lst | 191 ++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 191 insertions(+)
 create mode 100644 linux/pillage.lst

diff --git a/linux/pillage.lst b/linux/pillage.lst
new file mode 100644
index 0000000..1a18c3c
--- /dev/null
+++ b/linux/pillage.lst
@@ -0,0 +1,191 @@
+/apache/logs/access.log
+/apache/logs/error.log
+/bin/php.ini
+/etc/alias
+/etc/apache2/apache.conf
+/etc/apache2/conf/httpd.conf
+/etc/apache2/httpd.conf
+/etc/apache/conf/httpd.conf
+/etc/bash.bashrc
+/etc/chttp.conf
+/etc/crontab
+/etc/crypttab
+/etc/debian_version
+/etc/exports
+/etc/fedora-release
+/etc/fstab
+/etc/ftphosts
+/etc/ftpusers
+/etc/group
+/etc/group-
+/etc/hosts
+/etc/http/conf/httpd.conf
+/etc/httpd.conf
+/etc/httpd/conf/httpd.conf
+/etc/httpd/httpd.conf
+/etc/httpd/logs/acces_log
+/etc/httpd/logs/acces.log
+/etc/httpd/logs/access_log
+/etc/httpd/logs/access.log
+/etc/httpd/logs/error_log
+/etc/httpd/logs/error.log
+/etc/httpd/php.ini
+/etc/http/httpd.conf
+/etc/inetd.conf
+/etc/inittab
+/etc/issue
+/etc/issue.net
+/etc/lighttpd.conf
+/etc/login.defs
+/etc/mandrake-release
+/etc/motd
+/etc/mtab
+/etc/my.cnf
+/etc/mysql/my.cnf
+/etc/openldap/ldap.conf
+/etc/os-release
+/etc/pam.conf
+/etc/passwd
+/etc/passwd-
+/etc/password.master
+/etc/php4.4/fcgi/php.ini
+/etc/php4/apache2/php.ini
+/etc/php4/apache/php.ini
+/etc/php4/cgi/php.ini
+/etc/php5/apache2/php.ini
+/etc/php5/apache/php.ini
+/etc/php5/cgi/php.ini
+/etc/php/apache2/php.ini
+/etc/php/apache/php.ini
+/etc/php/cgi/php.ini
+/etc/php.ini
+/etc/php/php4/php.ini
+/etc/php/php.ini
+/etc/profile
+/etc/proftp.conf
+/etc/proftpd/modules.conf
+/etc/protpd/proftpd.conf
+/etc/pure-ftpd.conf
+/etc/pureftpd.passwd
+/etc/pureftpd.pdb
+/etc/pure-ftpd/pure-ftpd.conf
+/etc/pure-ftpd/pure-ftpd.pdb
+/etc/pure-ftpd/pureftpd.pdb
+/etc/redhat-release
+/etc/resolv.conf
+/etc/samba/smb.conf
+/etc/security/environ
+/etc/security/group
+/etc/security/limits
+/etc/security/passwd
+/etc/security/user
+/etc/shadow
+/etc/shadow-
+/etc/slackware-release
+/etc/sudoers
+/etc/SUSE-release
+/etc/sysctl.conf
+/etc/vhcs2/proftpd/proftpd.conf
+/etc/vsftpd.conf
+/etc/vsftpd/vsftpd.conf
+/etc/wu-ftpd/ftpaccess
+/etc/wu-ftpd/ftphosts
+/etc/wu-ftpd/ftpusers
+/logs/access.log
+/logs/error.log
+/opt/apache2/conf/httpd.conf
+/opt/apache/conf/httpd.conf
+/opt/xampp/etc/php.ini
+/php4\php.ini
+/php5\php.ini
+/php\php.ini
+/PHP\php.ini
+/private/etc/httpd/httpd.conf
+/private/etc/httpd/httpd.conf.default
+/root/.bash_history
+/root/.ssh/id_rsa
+/root/.ssh/id_rsa.pub
+/root/.ssh/known_hosts
+/tmp/access.log
+/usr/apache2/conf/httpd.conf
+/usr/apache/conf/httpd.conf
+/usr/etc/pure-ftpd.conf
+/usr/lib/php.ini
+/usr/lib/php/php.ini
+/usr/lib/security/mkuser.default
+/usr/local/apache2/conf/httpd.conf
+/usr/local/apache2/httpd.conf
+/usr/local/apache2/logs/access_log
+/usr/local/apache2/logs/access.log
+/usr/local/apache2/logs/error_log
+/usr/local/apache2/logs/error.log
+/usr/local/apache/conf/httpd.conf
+/usr/local/apache/conf/php.ini
+/usr/local/apache/httpd.conf
+/usr/local/apache/logs/access_log
+/usr/local/apache/logs/access.log
+/usr/local/apache/logs/error_log
+/usr/local/apache/logs/error.log
+/usr/local/apache/logs/error. og
+/usr/local/apps/apache2/conf/httpd.conf
+/usr/local/apps/apache/conf/httpd.conf
+/usr/local/etc/apache2/conf/httpd.conf
+/usr/local/etc/apache/conf/httpd.conf
+/usr/local/etc/apache/vhosts.conf
+/usr/local/etc/httpd/conf/httpd.conf
+/usr/local/etc/php.ini
+/usr/local/etc/pure-ftpd.conf
+/usr/local/etc/pureftpd.pdb
+/usr/local/httpd/conf/httpd.conf
+/usr/local/lib/php.ini
+/usr/local/php4/httpd.conf
+/usr/local/php4/httpd.conf.php
+/usr/local/php4/lib/php.ini
+/usr/local/php5/httpd.conf
+/usr/local/php5/httpd.conf.php
+/usr/local/php5/lib/php.ini
+/usr/local/php/httpd.conf
+/usr/local/php/httpd.conf.php
+/usr/local/php/lib/php.ini
+/usr/local/pureftpd/etc/pure-ftpd.conf
+/usr/local/pureftpd/etc/pureftpd.pdb
+/usr/local/pureftpd/sbin/pure-config.pl
+/usr/local/Zend/etc/php.ini
+/usr/pkgsrc/net/pureftpd/
+/usr/ports/contrib/pure-ftpd/
+/usr/ports/ftp/pure-ftpd/
+/usr/ports/net/pure-ftpd/
+/usr/sbin/pure-config.pl
+/var/cpanel/cpanel.config
+/var/lib/mysql/my.cnf
+/var/local/www/conf/php.ini
+/var/log/access_log
+/var/log/access.log
+/var/log/apache2/access_log
+/var/log/apache2/access.log
+/var/log/apache2/error_log
+/var/log/apache2/error.log
+/var/log/apache/access_log
+/var/log/apache/access.log
+/var/log/apache/error_log
+/var/log/apache/error.log
+/var/log/error_log
+/var/log/error.log
+/var/log/httpd/access_log
+/var/log/httpd/access.log
+/var/log/httpd/error_log
+/var/log/httpd/error.log
+/var/log/messages
+/var/log/messages.1
+/var/log/user.log
+/var/log/user.log.1
+/var/www/conf/httpd.conf
+/var/www/html/index.html
+/var/www/logs/access_log
+/var/www/logs/access.log
+/var/www/logs/error_log
+/var/www/logs/error.log
+/Volumes/webBackup/opt/apache2/conf/httpd.conf
+/Volumes/webBackup/private/etc/httpd/httpd.conf
+/Volumes/webBackup/private/etc/httpd/httpd.conf.default
+/web/conf/php.ini