Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • World
  • Users
  • Groups
Skins
  • Light
  • Brite
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (Cyborg)
  • No Skin
Collapse
Brand Logo

CIRCLE WITH A DOT
  1. Home
  2. Uncategorized
  3. In preparation for an upcoming blog post, I wondered about the various ways that Windows can refer to a remote WebDAV resource.

In preparation for an upcoming blog post, I wondered about the various ways that Windows can refer to a remote WebDAV resource.

Scheduled Pinned Locked Moved Uncategorized
5 Posts 4 Posters 0 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • wdormann@infosec.exchangeW This user is from outside of this forum
    wdormann@infosec.exchangeW This user is from outside of this forum
    wdormann@infosec.exchange
    wrote last edited by
    #1

    In preparation for an upcoming blog post, I wondered about the various ways that Windows can refer to a remote WebDAV resource.

    These all work:

    \\example.com\pwned.exe
    \/example.com\pwned.exe
    file://example.com\pwned.exe
    file:/\example.com\pwned.exe
    file:\/example.com\pwned.exe
    file:\\example.com\pwned.exe
    file:////example.com\pwned.exe
    file:///\example.com\pwned.exe
    file://\/example.com\pwned.exe
    file://\\example.com\pwned.exe
    file:/\//example.com\pwned.exe
    file:/\/\example.com\pwned.exe
    file:/\\/example.com\pwned.exe
    file:/\\\example.com\pwned.exe
    file:\///example.com\pwned.exe
    file:\//\example.com\pwned.exe
    file:\/\/example.com\pwned.exe
    file:\/\\example.com\pwned.exe
    file:\\//example.com\pwned.exe
    file:\\/\example.com\pwned.exe
    file:\\\/example.com\pwned.exe
    file:\\\\example.com\pwned.exe

    These don't, presumably because windows treats the leading / as meaning it comes from the local filesystem:

    //example.com\pwned.exe
    /\example.com\pwned.exe
    zhenech@chaos.socialZ winterknight1337@infosec.exchangeW gossithedog@cyberplace.socialG 3 Replies Last reply
    0
    • wdormann@infosec.exchangeW wdormann@infosec.exchange

      In preparation for an upcoming blog post, I wondered about the various ways that Windows can refer to a remote WebDAV resource.

      These all work:

      \\example.com\pwned.exe
      \/example.com\pwned.exe
      file://example.com\pwned.exe
      file:/\example.com\pwned.exe
      file:\/example.com\pwned.exe
      file:\\example.com\pwned.exe
      file:////example.com\pwned.exe
      file:///\example.com\pwned.exe
      file://\/example.com\pwned.exe
      file://\\example.com\pwned.exe
      file:/\//example.com\pwned.exe
      file:/\/\example.com\pwned.exe
      file:/\\/example.com\pwned.exe
      file:/\\\example.com\pwned.exe
      file:\///example.com\pwned.exe
      file:\//\example.com\pwned.exe
      file:\/\/example.com\pwned.exe
      file:\/\\example.com\pwned.exe
      file:\\//example.com\pwned.exe
      file:\\/\example.com\pwned.exe
      file:\\\/example.com\pwned.exe
      file:\\\\example.com\pwned.exe

      These don't, presumably because windows treats the leading / as meaning it comes from the local filesystem:

      //example.com\pwned.exe
      /\example.com\pwned.exe
      zhenech@chaos.socialZ This user is from outside of this forum
      zhenech@chaos.socialZ This user is from outside of this forum
      zhenech@chaos.social
      wrote last edited by
      #2

      @wdormann the slashes ate doing a little dance there, in anticipation of being part of something big 😉

      1 Reply Last reply
      0
      • wdormann@infosec.exchangeW wdormann@infosec.exchange

        In preparation for an upcoming blog post, I wondered about the various ways that Windows can refer to a remote WebDAV resource.

        These all work:

        \\example.com\pwned.exe
        \/example.com\pwned.exe
        file://example.com\pwned.exe
        file:/\example.com\pwned.exe
        file:\/example.com\pwned.exe
        file:\\example.com\pwned.exe
        file:////example.com\pwned.exe
        file:///\example.com\pwned.exe
        file://\/example.com\pwned.exe
        file://\\example.com\pwned.exe
        file:/\//example.com\pwned.exe
        file:/\/\example.com\pwned.exe
        file:/\\/example.com\pwned.exe
        file:/\\\example.com\pwned.exe
        file:\///example.com\pwned.exe
        file:\//\example.com\pwned.exe
        file:\/\/example.com\pwned.exe
        file:\/\\example.com\pwned.exe
        file:\\//example.com\pwned.exe
        file:\\/\example.com\pwned.exe
        file:\\\/example.com\pwned.exe
        file:\\\\example.com\pwned.exe

        These don't, presumably because windows treats the leading / as meaning it comes from the local filesystem:

        //example.com\pwned.exe
        /\example.com\pwned.exe
        winterknight1337@infosec.exchangeW This user is from outside of this forum
        winterknight1337@infosec.exchangeW This user is from outside of this forum
        winterknight1337@infosec.exchange
        wrote last edited by
        #3

        @wdormann this is disgusting.

        1 Reply Last reply
        0
        • wdormann@infosec.exchangeW wdormann@infosec.exchange

          In preparation for an upcoming blog post, I wondered about the various ways that Windows can refer to a remote WebDAV resource.

          These all work:

          \\example.com\pwned.exe
          \/example.com\pwned.exe
          file://example.com\pwned.exe
          file:/\example.com\pwned.exe
          file:\/example.com\pwned.exe
          file:\\example.com\pwned.exe
          file:////example.com\pwned.exe
          file:///\example.com\pwned.exe
          file://\/example.com\pwned.exe
          file://\\example.com\pwned.exe
          file:/\//example.com\pwned.exe
          file:/\/\example.com\pwned.exe
          file:/\\/example.com\pwned.exe
          file:/\\\example.com\pwned.exe
          file:\///example.com\pwned.exe
          file:\//\example.com\pwned.exe
          file:\/\/example.com\pwned.exe
          file:\/\\example.com\pwned.exe
          file:\\//example.com\pwned.exe
          file:\\/\example.com\pwned.exe
          file:\\\/example.com\pwned.exe
          file:\\\\example.com\pwned.exe

          These don't, presumably because windows treats the leading / as meaning it comes from the local filesystem:

          //example.com\pwned.exe
          /\example.com\pwned.exe
          gossithedog@cyberplace.socialG This user is from outside of this forum
          gossithedog@cyberplace.socialG This user is from outside of this forum
          gossithedog@cyberplace.social
          wrote last edited by
          #4

          @wdormann \\web.dav@ssl\blah too

          wdormann@infosec.exchangeW 1 Reply Last reply
          0
          • gossithedog@cyberplace.socialG gossithedog@cyberplace.social

            @wdormann \\web.dav@ssl\blah too

            wdormann@infosec.exchangeW This user is from outside of this forum
            wdormann@infosec.exchangeW This user is from outside of this forum
            wdormann@infosec.exchange
            wrote last edited by
            #5

            @GossiTheDog
            At least in my case, that's covered by the \\example.com\pwned.exe case.

            1 Reply Last reply
            1
            0
            • R relay@relay.infosec.exchange shared this topic
            Reply
            • Reply as topic
            Log in to reply
            • Oldest to Newest
            • Newest to Oldest
            • Most Votes

            • Login
            • Login or register to search.
            • First post
              Last post
            0
            • Categories
            • Recent
            • Tags
            • Popular
            • World
            • Users
            • Groups