Most IIS versions have been confirmed to be vulnerable to IIS shortname enumeration by default. This video goes into detail regarding what shortnames are, and how they are relevant when it comes to testing IIS servers. You will find some example successes in bug bounties at the end of the video.
I plan on making a few videos around IIS and .NET hacking. This is the first video in that series.
Links from the video:
Attack surface management platform:
Precious Time by Ketsa
Creative Commons Attribution
Source:
Tag: microsoft iis tilde directory enumeration, [vid_tags]
Xem thêm: https://blogmáytính.vn/category/internet
Nguồn: https://blogmáytính.vn
