Tuesday, July 2, 2013

Burp Extension: Directory and File Listing Parser - Burp Site Map Importer

Click Here to Download Source Code

Penetration testers, rejoice! While conducting application penetration tests it’s sometimes necessary to request specific information from the application owner or client. As a pen tester it can be extremely beneficial to perform a test with a full directory and file listing of the application, which sometimes can be difficult to acquire.

So let’s assume all clients are perfect and provide a full directory and file listing of their application (funny, I know) but what do we do with it? My process usually involves manually looking over everything trying to find keywords which jump out… I just might want to take a look at adminpassword.txt. Depending on the size of the application I may attempt to reach every file but usually this is not an efficient use of time. I wanted to create a quick and easy process for dealing with directory and file listings so I created a Burp Suite extension which will do a lot of the work for me.

My Burp extension contains two main features. The first feature is the ability to parse the listing file and generate a list of valid URLs to request each resource. The second feature is generating a request for each URL and importing the valid request/response pairs into Burp’s Target Site Map. Why is having a full site map helpful? We now have the ability to see the entire structure of the application, search within all valid responses, conduct manual testing or an active scan on ALL accessible resources, and much more. The process flow looks like this:

The Burp extension is written in python so a standalone jython jar will be needed to run it: Currently the extension is only tested and working with jython-standalone 2.5.3


After loading the extension you will have an option in the context menu to “Import Directory Listing”:

A GUI will appear for the extension. Fields such as hostname, SSL, and port will automatically populate depending on the request or response the menu option was originally invoked from. Cookies will also be displayed and used in any requests the extension makes. This feature makes it easy to compare site maps of two application user roles (based on varying session information such as cookies) to determine if each role has the correct access.

In this example I have selected the “Import Directory Listing” menu option on the DVWA web application which is running on my local machine. Now we must fill out all options on the left side of the GUI including hostname, full directory path (windows only, but CAN be used to modify URLs from a linux listing type) which specifies where the root of the web application sits, SSL, port, file listing type, and path to listing file.

On a Windows XP machine, I used the ‘dir /s’ command in cmd.exe which displays all files from the current directory and all sub directories. If the application is sitting on a Windows platform this is a very common command used for directory and file listings. The full directory and file listing for the DVWA web application (selected in the above image as C:\dvwa-listing.txt) looks like this:

dir /s:
 Volume in drive C has no label.
 Volume Serial Number is 5033-AA99

 Directory of C:\xampp\htdocs\dvwa

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:49 PM               497 .htaccess
08/26/2010  11:15 AM             2,792 about.php
06/06/2010  07:55 PM             5,066 CHANGELOG.txt
09/08/2010  09:50 PM    <DIR>          config
03/16/2010  12:56 AM            33,107 COPYING.txt
09/08/2010  09:50 PM    <DIR>          docs
09/08/2010  09:50 PM    <DIR>          dvwa
09/08/2010  09:50 PM    <DIR>          external
09/06/2010  10:59 AM             1,406 favicon.ico
09/08/2010  09:50 PM    <DIR>          hackable
03/16/2010  12:56 AM               883 ids_log.php
06/06/2010  07:52 PM             1,878 index.php
03/16/2010  12:56 AM             1,761 instructions.php
08/26/2010  11:18 AM             2,580 login.php
07/05/2009  03:31 PM               148 php.ini
03/16/2010  12:56 AM               193 phpinfo.php
03/16/2010  12:56 AM             4,934 README.txt
03/16/2010  12:56 AM                26 robots.txt
03/16/2010  12:56 AM             2,738 security.php
06/06/2010  10:58 PM             1,350 setup.php
09/08/2010  09:50 PM    <DIR>          vulnerabilities
              16 File(s)         59,772 bytes

 Directory of C:\xampp\htdocs\dvwa\config

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
08/26/2010  10:32 AM               576 config.inc.php
08/26/2010  11:06 AM               576 config.inc.php~
               2 File(s)          1,152 bytes

 Directory of C:\xampp\htdocs\dvwa\docs

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
08/26/2010  10:32 AM           526,043 DVWA-Documentation.pdf
               1 File(s)        526,043 bytes

 Directory of C:\xampp\htdocs\dvwa\dvwa

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          css
09/08/2010  09:50 PM    <DIR>          images
09/08/2010  09:50 PM    <DIR>          includes
09/08/2010  09:50 PM    <DIR>          js
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\dvwa\css

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/07/2010  09:15 PM               244 help.css
09/06/2010  11:01 AM               608 login.css
09/06/2010  11:01 AM             3,945 main.css
09/07/2010  09:15 PM               244 source.css
               4 File(s)          5,041 bytes

 Directory of C:\xampp\htdocs\dvwa\dvwa\images

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               470 dollar.png
03/16/2010  12:56 AM             1,025 lock.png
08/26/2010  10:51 AM            12,875 login_logo.png
09/06/2010  11:01 AM             6,749 logo.png
06/06/2010  11:05 PM             7,023 RandomStorm.png
03/16/2010  12:56 AM               716 spanner.png
03/16/2010  12:56 AM               543 warning.png
               7 File(s)         29,401 bytes

 Directory of C:\xampp\htdocs\dvwa\dvwa\includes

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          DBMS
09/07/2010  09:15 PM            13,146 dvwaPage.inc.php
03/16/2010  12:56 AM             2,563 dvwaPhpIds.inc.php
               2 File(s)         15,709 bytes

 Directory of C:\xampp\htdocs\dvwa\dvwa\includes\DBMS

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
06/06/2010  10:59 PM             2,432 DBMS.php
06/06/2010  10:59 PM             2,964 MySQL.php
06/06/2010  10:59 PM             3,438 PGSQL.php
               3 File(s)          8,834 bytes

 Directory of C:\xampp\htdocs\dvwa\dvwa\js

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               775 dvwaPage.js
               1 File(s)            775 bytes

 Directory of C:\xampp\htdocs\dvwa\external

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          phpids
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          0.6
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               380 build.xml
09/08/2010  09:50 PM    <DIR>          docs
09/08/2010  09:50 PM    <DIR>          lib
03/16/2010  12:56 AM             7,639 LICENSE
09/08/2010  09:50 PM    <DIR>          tests
               2 File(s)          8,019 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\docs

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          examples
09/08/2010  09:50 PM    <DIR>          phpdocumentor
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\docs\examples

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          cakephp
03/16/2010  12:56 AM             3,665 example.php
               1 File(s)          3,665 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\docs\examples\cakephp

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             7,886 ids.php
03/16/2010  12:56 AM               653 intrusion.php
03/16/2010  12:56 AM             1,019 intrusions.sql
03/16/2010  12:56 AM               645 README
               4 File(s)         10,203 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\docs\phpdocumentor

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               416 blank.html
03/16/2010  12:56 AM             2,719 classtrees_PHPIDS.html
03/16/2010  12:56 AM           567,382 elementindex.html
03/16/2010  12:56 AM            60,350 elementindex_PHPIDS.html
03/16/2010  12:56 AM           110,192 errors.html
03/16/2010  12:56 AM               951 index.html
03/16/2010  12:56 AM             4,941 li_PHPIDS.html
09/08/2010  09:50 PM    <DIR>          media
03/16/2010  12:56 AM               994 packages.html
09/08/2010  09:50 PM    <DIR>          PHPIDS
               8 File(s)        747,945 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\docs\phpdocumentor\media

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               393 banner.css
03/16/2010  12:56 AM             5,407 stylesheet.css
               2 File(s)          5,800 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\docs\phpdocumentor\PHPIDS

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             4,652 IDS_Caching.html
03/16/2010  12:56 AM             9,082 IDS_Caching_Database.html
03/16/2010  12:56 AM             8,924 IDS_Caching_File.html
03/16/2010  12:56 AM             4,905 IDS_Caching_Interface.html
03/16/2010  12:56 AM             9,029 IDS_Caching_Memcached.html
03/16/2010  12:56 AM             8,840 IDS_Caching_Session.html
03/16/2010  12:56 AM            26,828 IDS_Converter.html
03/16/2010  12:56 AM            16,146 IDS_Event.html
03/16/2010  12:56 AM            14,861 IDS_Filter.html
03/16/2010  12:56 AM            14,208 IDS_Filter_Storage.html
03/16/2010  12:56 AM            10,760 IDS_Filter_Storage_Abstract.html
03/16/2010  12:56 AM            14,648 IDS_Init.html
03/16/2010  12:56 AM             8,396 IDS_Log_Composite.html
03/16/2010  12:56 AM             7,433 IDS_Log_Database.html
03/16/2010  12:56 AM            11,691 IDS_Log_Email.html
03/16/2010  12:56 AM             8,658 IDS_Log_File.html
03/16/2010  12:56 AM             4,213 IDS_Log_Interface.html
03/16/2010  12:56 AM            18,064 IDS_Monitor.html
03/16/2010  12:56 AM            21,458 IDS_Report.html
03/16/2010  12:56 AM             5,512 _Caching---Database.php.html
03/16/2010  12:56 AM             3,240 _Caching---Factory.php.html
03/16/2010  12:56 AM             5,491 _Caching---File.php.html
03/16/2010  12:56 AM             3,274 _Caching---Interface.php.html
03/16/2010  12:56 AM             5,511 _Caching---Memcached.php.html
03/16/2010  12:56 AM             5,503 _Caching---Session.php.html
03/16/2010  12:56 AM             3,283 _Converter.php.html
03/16/2010  12:56 AM             3,228 _Event.php.html
03/16/2010  12:56 AM             2,450 _Filter---Filter.php.html
03/16/2010  12:56 AM             2,498 _Filter---Storage---Abstract.php.html
03/16/2010  12:56 AM             3,252 _Filter---Storage.php.html
03/16/2010  12:56 AM             3,233 _Filter.php.html
03/16/2010  12:56 AM             3,225 _Init.php.html
03/16/2010  12:56 AM             5,485 _Log---Composite.php.html
03/16/2010  12:56 AM             5,491 _Log---Database.php.html
03/16/2010  12:56 AM             5,477 _Log---Email.php.html
03/16/2010  12:56 AM             5,472 _Log---File.php.html
03/16/2010  12:56 AM             3,267 _Log---Interface.php.html
03/16/2010  12:56 AM             3,234 _Monitor.php.html
03/16/2010  12:56 AM             3,233 _Report.php.html
              39 File(s)        304,155 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          IDS
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          Caching
09/08/2010  09:50 PM    <DIR>          Config
03/16/2010  12:56 AM            22,495 Converter.php
03/16/2010  12:56 AM            16,360 default_filter.json
03/16/2010  12:56 AM            30,021 default_filter.xml
03/16/2010  12:56 AM             5,471 Event.php
09/08/2010  09:50 PM    <DIR>          Filter
03/16/2010  12:56 AM             4,392 Filter.php
03/16/2010  12:56 AM             6,372 Init.php
09/08/2010  09:50 PM    <DIR>          Log
03/16/2010  12:56 AM            18,660 Monitor.php
03/16/2010  12:56 AM             9,071 Report.php
09/08/2010  09:50 PM    <DIR>          tmp
09/08/2010  09:50 PM    <DIR>          vendors
               8 File(s)        112,842 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\Caching

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             7,198 Database.php
03/16/2010  12:56 AM             2,552 Factory.php
03/16/2010  12:56 AM             4,776 File.php
03/16/2010  12:56 AM             1,948 Interface.php
03/16/2010  12:56 AM             5,890 Memcached.php
03/16/2010  12:56 AM             3,512 Session.php
               6 File(s)         25,876 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\Config

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             2,772 Config.ini
               1 File(s)          2,772 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\Filter

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM            11,162 Storage.php
               1 File(s)         11,162 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\Log

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             3,639 Composite.php
03/16/2010  12:56 AM             7,591 Database.php
03/16/2010  12:56 AM            11,193 Email.php
03/16/2010  12:56 AM             6,333 File.php
03/16/2010  12:56 AM             1,834 Interface.php
               5 File(s)         30,590 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\tmp

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               319 phpids_log.txt
               1 File(s)            319 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          htmlpurifier
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          HTMLPurifier
03/16/2010  12:56 AM               260 HTMLPurifier.auto.php
03/16/2010  12:56 AM               625 HTMLPurifier.autoload.php
03/16/2010  12:56 AM               545 HTMLPurifier.func.php
03/16/2010  12:56 AM             9,318 HTMLPurifier.includes.php
03/16/2010  12:56 AM               969 HTMLPurifier.kses.php
03/16/2010  12:56 AM               221 HTMLPurifier.path.php
03/16/2010  12:56 AM             9,183 HTMLPurifier.php
03/16/2010  12:56 AM            11,852 HTMLPurifier.safe-includes.php
               8 File(s)         32,973 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             4,606 AttrCollections.php
09/08/2010  09:50 PM    <DIR>          AttrDef
03/16/2010  12:56 AM             3,345 AttrDef.php
09/08/2010  09:50 PM    <DIR>          AttrTransform
03/16/2010  12:56 AM             1,910 AttrTransform.php
03/16/2010  12:56 AM             2,776 AttrTypes.php
03/16/2010  12:56 AM             6,782 AttrValidator.php
03/16/2010  12:56 AM             3,695 Bootstrap.php
09/08/2010  09:50 PM    <DIR>          ChildDef
03/16/2010  12:56 AM             1,458 ChildDef.php
03/16/2010  12:56 AM            18,684 Config.php
09/08/2010  09:50 PM    <DIR>          ConfigDef
03/16/2010  12:56 AM               133 ConfigDef.php
09/08/2010  09:50 PM    <DIR>          ConfigSchema
03/16/2010  12:56 AM             8,775 ConfigSchema.php
03/16/2010  12:56 AM             5,474 ContentSets.php
03/16/2010  12:56 AM             2,485 Context.php
03/16/2010  12:56 AM            12,764 CSSDefinition.php
03/16/2010  12:56 AM               851 Definition.php
09/08/2010  09:50 PM    <DIR>          DefinitionCache
03/16/2010  12:56 AM             3,399 DefinitionCache.php
03/16/2010  12:56 AM             2,906 DefinitionCacheFactory.php
03/16/2010  12:56 AM             1,463 Doctype.php
03/16/2010  12:56 AM             3,647 DoctypeRegistry.php
03/16/2010  12:56 AM             5,818 ElementDef.php
03/16/2010  12:56 AM            19,071 Encoder.php
09/08/2010  09:50 PM    <DIR>          EntityLookup
03/16/2010  12:56 AM             1,330 EntityLookup.php
03/16/2010  12:56 AM             4,954 EntityParser.php
03/16/2010  12:56 AM             7,697 ErrorCollector.php
03/16/2010  12:56 AM             1,713 ErrorStruct.php
03/16/2010  12:56 AM               170 Exception.php
09/08/2010  09:50 PM    <DIR>          Filter
03/16/2010  12:56 AM             1,370 Filter.php
03/16/2010  12:56 AM             6,876 Generator.php
03/16/2010  12:56 AM            16,541 HTMLDefinition.php
09/08/2010  09:50 PM    <DIR>          HTMLModule
03/16/2010  12:56 AM             9,794 HTMLModule.php
03/16/2010  12:56 AM            14,992 HTMLModuleManager.php
03/16/2010  12:56 AM             1,590 IDAccumulator.php
09/08/2010  09:50 PM    <DIR>          Injector
03/16/2010  12:56 AM             8,683 Injector.php
09/08/2010  09:50 PM    <DIR>          Language
03/16/2010  12:56 AM             5,620 Language.php
03/16/2010  12:56 AM             6,776 LanguageFactory.php
03/16/2010  12:56 AM             3,285 Length.php
09/08/2010  09:50 PM    <DIR>          Lexer
03/16/2010  12:56 AM            11,181 Lexer.php
03/16/2010  12:56 AM             3,473 PercentEncoder.php
09/08/2010  09:50 PM    <DIR>          Printer
03/16/2010  12:56 AM             5,091 Printer.php
09/08/2010  09:50 PM    <DIR>          Strategy
03/16/2010  12:56 AM               695 Strategy.php
03/16/2010  12:56 AM             1,001 StringHash.php
03/16/2010  12:56 AM             3,189 StringHashParser.php
09/08/2010  09:50 PM    <DIR>          TagTransform
03/16/2010  12:56 AM             1,027 TagTransform.php
09/08/2010  09:50 PM    <DIR>          Token
03/16/2010  12:56 AM             1,626 Token.php
03/16/2010  12:56 AM             2,765 TokenFactory.php
03/16/2010  12:56 AM             9,686 UnitConverter.php
03/16/2010  12:56 AM             6,732 URI.php
03/16/2010  12:56 AM             3,052 URIDefinition.php
09/08/2010  09:50 PM    <DIR>          URIFilter
03/16/2010  12:56 AM             1,339 URIFilter.php
03/16/2010  12:56 AM             2,400 URIParser.php
09/08/2010  09:50 PM    <DIR>          URIScheme
03/16/2010  12:56 AM             1,143 URIScheme.php
03/16/2010  12:56 AM             2,333 URISchemeRegistry.php
09/08/2010  09:50 PM    <DIR>          VarParser
03/16/2010  12:56 AM             5,367 VarParser.php
03/16/2010  12:56 AM               147 VarParserException.php
              53 File(s)        263,680 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\AttrDef

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          CSS
03/16/2010  12:56 AM             3,242 CSS.php
03/16/2010  12:56 AM             2,070 Enum.php
09/08/2010  09:50 PM    <DIR>          HTML
03/16/2010  12:56 AM             2,377 Integer.php
03/16/2010  12:56 AM             2,302 Lang.php
03/16/2010  12:56 AM               997 Switch.php
03/16/2010  12:56 AM               269 Text.php
09/08/2010  09:50 PM    <DIR>          URI
03/16/2010  12:56 AM             2,325 URI.php
               7 File(s)         13,582 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\AttrDef\CSS

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               570 AlphaValue.php
03/16/2010  12:56 AM             2,882 Background.php
03/16/2010  12:56 AM             3,703 BackgroundPosition.php
03/16/2010  12:56 AM             1,328 Border.php
03/16/2010  12:56 AM             2,684 Color.php
03/16/2010  12:56 AM             1,128 Composite.php
03/16/2010  12:56 AM               785 DenyElementDecorator.php
03/16/2010  12:56 AM             1,949 Filter.php
03/16/2010  12:56 AM             6,169 Font.php
03/16/2010  12:56 AM             3,375 FontFamily.php
03/16/2010  12:56 AM             1,323 ImportantDecorator.php
03/16/2010  12:56 AM             1,440 Length.php
03/16/2010  12:56 AM             2,430 ListStyle.php
03/16/2010  12:56 AM             1,829 Multiple.php
03/16/2010  12:56 AM             1,947 Number.php
03/16/2010  12:56 AM             1,076 Percentage.php
03/16/2010  12:56 AM             1,012 TextDecoration.php
03/16/2010  12:56 AM             2,080 URI.php
              18 File(s)         37,710 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\AttrDef\HTML

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               585 Bool.php
03/16/2010  12:56 AM               875 Color.php
03/16/2010  12:56 AM               587 FrameTarget.php
03/16/2010  12:56 AM             2,403 ID.php
03/16/2010  12:56 AM             1,057 Length.php
03/16/2010  12:56 AM             1,496 LinkTypes.php
03/16/2010  12:56 AM             1,083 MultiLength.php
03/16/2010  12:56 AM             1,649 Nmtokens.php
03/16/2010  12:56 AM             1,343 Pixels.php
               9 File(s)         11,078 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\AttrDef\URI

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          Email
03/16/2010  12:56 AM               282 Email.php
03/16/2010  12:56 AM             2,125 Host.php
03/16/2010  12:56 AM               870 IPv4.php
03/16/2010  12:56 AM             2,800 IPv6.php
               4 File(s)          6,077 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\AttrDef\URI\Email

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               646 SimpleCheck.php
               1 File(s)            646 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\AttrTransform

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               568 Background.php
03/16/2010  12:56 AM               470 BdoDir.php
03/16/2010  12:56 AM               544 BgColor.php
03/16/2010  12:56 AM               900 BoolToCSS.php
03/16/2010  12:56 AM               500 Border.php
03/16/2010  12:56 AM             1,577 EnumToCSS.php
03/16/2010  12:56 AM             1,221 ImgRequired.php
03/16/2010  12:56 AM             1,177 ImgSpace.php
03/16/2010  12:56 AM             1,324 Input.php
03/16/2010  12:56 AM               756 Lang.php
03/16/2010  12:56 AM               726 Length.php
03/16/2010  12:56 AM               459 Name.php
03/16/2010  12:56 AM               372 SafeEmbed.php
03/16/2010  12:56 AM               380 SafeObject.php
03/16/2010  12:56 AM             1,619 SafeParam.php
03/16/2010  12:56 AM               354 ScriptRequired.php
03/16/2010  12:56 AM               399 Textarea.php
              17 File(s)         13,346 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\ChildDef

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,575 Chameleon.php
03/16/2010  12:56 AM             2,901 Custom.php
03/16/2010  12:56 AM               620 Empty.php
03/16/2010  12:56 AM               830 Optional.php
03/16/2010  12:56 AM             3,806 Required.php
03/16/2010  12:56 AM             3,283 StrictBlockquote.php
03/16/2010  12:56 AM             5,822 Table.php
               7 File(s)         18,837 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\ConfigDef

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,481 Directive.php
03/16/2010  12:56 AM               475 DirectiveAlias.php
03/16/2010  12:56 AM               179 Namespace.php
               3 File(s)          2,135 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\ConfigSchema

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          Builder
03/16/2010  12:56 AM               152 Exception.php
09/08/2010  09:50 PM    <DIR>          Interchange
03/16/2010  12:56 AM             1,563 Interchange.php
03/16/2010  12:56 AM             6,252 InterchangeBuilder.php
09/08/2010  09:50 PM    <DIR>          schema
03/16/2010  12:56 AM             7,540 schema.ser
03/16/2010  12:56 AM             8,665 Validator.php
03/16/2010  12:56 AM             1,973 ValidatorAtom.php
               6 File(s)         26,145 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\ConfigSchema\Builder

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,519 ConfigSchema.php
03/16/2010  12:56 AM             4,005 Xml.php
               2 File(s)          5,524 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\ConfigSchema\Interchange

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,858 Directive.php
03/16/2010  12:56 AM               783 Id.php
03/16/2010  12:56 AM               300 Namespace.php
               3 File(s)          2,941 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\ConfigSchema\schema

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               566 Attr.AllowedFrameTargets.txt
03/16/2010  12:56 AM               274 Attr.AllowedRel.txt
03/16/2010  12:56 AM               241 Attr.AllowedRev.txt
03/16/2010  12:56 AM               450 Attr.DefaultImageAlt.txt
03/16/2010  12:56 AM               305 Attr.DefaultInvalidImage.txt
03/16/2010  12:56 AM               285 Attr.DefaultInvalidImageAlt.txt
03/16/2010  12:56 AM               280 Attr.DefaultTextDir.txt
03/16/2010  12:56 AM               637 Attr.EnableID.txt
03/16/2010  12:56 AM               104 Attr.IDBlacklist.txt
03/16/2010  12:56 AM               303 Attr.IDBlacklistRegexp.txt
03/16/2010  12:56 AM               465 Attr.IDPrefix.txt
03/16/2010  12:56 AM               651 Attr.IDPrefixLocal.txt
03/16/2010  12:56 AM                61 Attr.txt
03/16/2010  12:56 AM             1,145 AutoFormat.AutoParagraph.txt
03/16/2010  12:56 AM               292 AutoFormat.Custom.txt
03/16/2010  12:56 AM               304 AutoFormat.DisplayLinkURI.txt
03/16/2010  12:56 AM               258 AutoFormat.Linkify.txt
03/16/2010  12:56 AM               298 AutoFormat.PurifierLinkify.txt
03/16/2010  12:56 AM             1,731 AutoFormat.RemoveEmpty.txt
03/16/2010  12:56 AM               124 AutoFormat.txt
03/16/2010  12:56 AM               275 AutoFormatParam.PurifierLinkifyDocURL.txt
03/16/2010  12:56 AM                91 AutoFormatParam.txt
03/16/2010  12:56 AM               365 Cache.DefinitionImpl.txt
03/16/2010  12:56 AM               322 Cache.SerializerPath.txt
03/16/2010  12:56 AM                79 Cache.txt
03/16/2010  12:56 AM               654 Core.AggressivelyFixLt.txt
03/16/2010  12:56 AM               422 Core.CollectErrors.txt
03/16/2010  12:56 AM               658 Core.ColorKeywords.txt
03/16/2010  12:56 AM               423 Core.ConvertDocumentToFragment.txt
03/16/2010  12:56 AM               628 Core.DirectLexLineNumberSyncInterval.txt
03/16/2010  12:56 AM               758 Core.Encoding.txt
03/16/2010  12:56 AM               382 Core.EscapeInvalidChildren.txt
03/16/2010  12:56 AM               185 Core.EscapeInvalidTags.txt
03/16/2010  12:56 AM               557 Core.EscapeNonASCIICharacters.txt
03/16/2010  12:56 AM               573 Core.HiddenElements.txt
03/16/2010  12:56 AM               282 Core.Language.txt
03/16/2010  12:56 AM             1,054 Core.LexerImpl.txt
03/16/2010  12:56 AM               552 Core.MaintainLineNumbers.txt
03/16/2010  12:56 AM               326 Core.RemoveInvalidImg.txt
03/16/2010  12:56 AM               268 Core.RemoveScriptContents.txt
03/16/2010  12:56 AM                61 Core.txt
03/16/2010  12:56 AM               608 CSS.AllowedProperties.txt
03/16/2010  12:56 AM               220 CSS.AllowImportant.txt
03/16/2010  12:56 AM               448 CSS.AllowTricky.txt
03/16/2010  12:56 AM               186 CSS.DefinitionRev.txt
03/16/2010  12:56 AM               615 CSS.MaxImgLength.txt
03/16/2010  12:56 AM               153 CSS.Proprietary.txt
03/16/2010  12:56 AM                56 CSS.txt
03/16/2010  12:56 AM               294 Filter.Custom.txt
03/16/2010  12:56 AM             2,820 Filter.ExtractStyleBlocks.txt
03/16/2010  12:56 AM                95 Filter.txt
03/16/2010  12:56 AM               313 Filter.YouTube.txt
03/16/2010  12:56 AM               442 FilterParam.ExtractStyleBlocksEscaping.txt
03/16/2010  12:56 AM             1,172 FilterParam.ExtractStyleBlocksScope.txt
03/16/2010  12:56 AM               523 FilterParam.ExtractStyleBlocksTidyImpl.txt
03/16/2010  12:56 AM                54 FilterParam.txt
03/16/2010  12:56 AM               810 HTML.Allowed.txt
03/16/2010  12:56 AM               611 HTML.AllowedAttributes.txt
03/16/2010  12:56 AM               699 HTML.AllowedElements.txt
03/16/2010  12:56 AM               725 HTML.AllowedModules.txt
03/16/2010  12:56 AM               568 HTML.BlockWrapper.txt
03/16/2010  12:56 AM               624 HTML.CoreModules.txt
03/16/2010  12:56 AM               222 HTML.CustomDoctype.txt
03/16/2010  12:56 AM             1,221 HTML.DefinitionID.txt
03/16/2010  12:56 AM               529 HTML.DefinitionRev.txt
03/16/2010  12:56 AM               460 HTML.Doctype.txt
03/16/2010  12:56 AM               849 HTML.ForbiddenAttributes.txt
03/16/2010  12:56 AM               750 HTML.ForbiddenElements.txt
03/16/2010  12:56 AM               478 HTML.MaxImgLength.txt
03/16/2010  12:56 AM               307 HTML.Parent.txt
03/16/2010  12:56 AM               322 HTML.Proprietary.txt
03/16/2010  12:56 AM               479 HTML.SafeEmbed.txt
03/16/2010  12:56 AM               511 HTML.SafeObject.txt
03/16/2010  12:56 AM               206 HTML.Strict.txt
03/16/2010  12:56 AM               150 HTML.TidyAdd.txt
03/16/2010  12:56 AM               620 HTML.TidyLevel.txt
03/16/2010  12:56 AM               158 HTML.TidyRemove.txt
03/16/2010  12:56 AM               228 HTML.Trusted.txt
03/16/2010  12:56 AM                58 HTML.txt
03/16/2010  12:56 AM               222 HTML.XHTML.txt
03/16/2010  12:56 AM                24 info.ini
03/16/2010  12:56 AM               262 Output.CommentScriptContents.txt
03/16/2010  12:56 AM               350 Output.Newline.txt
03/16/2010  12:56 AM               499 Output.SortAttr.txt
03/16/2010  12:56 AM               829 Output.TidyFormat.txt
03/16/2010  12:56 AM                75 Output.txt
03/16/2010  12:56 AM               180 Test.ForceNoIconv.txt
03/16/2010  12:56 AM                72 Test.txt
03/16/2010  12:56 AM               339 URI.AllowedSchemes.txt
03/16/2010  12:56 AM               651 URI.Base.txt
03/16/2010  12:56 AM               234 URI.DefaultScheme.txt
03/16/2010  12:56 AM               231 URI.DefinitionID.txt
03/16/2010  12:56 AM               186 URI.DefinitionRev.txt
03/16/2010  12:56 AM               264 URI.Disable.txt
03/16/2010  12:56 AM               431 URI.DisableExternal.txt
03/16/2010  12:56 AM               539 URI.DisableExternalResources.txt
03/16/2010  12:56 AM               282 URI.DisableResources.txt
03/16/2010  12:56 AM               822 URI.Host.txt
03/16/2010  12:56 AM               296 URI.HostBlacklist.txt
03/16/2010  12:56 AM               379 URI.MakeAbsolute.txt
03/16/2010  12:56 AM             2,823 URI.Munge.txt
03/16/2010  12:56 AM               604 URI.MungeResources.txt
03/16/2010  12:56 AM               976 URI.MungeSecretKey.txt
03/16/2010  12:56 AM               311 URI.OverrideAllowedSchemes.txt
03/16/2010  12:56 AM                68 URI.txt
             105 File(s)         49,222 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\DefinitionCache

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          Decorator
03/16/2010  12:56 AM             1,475 Decorator.php
03/16/2010  12:56 AM               698 Null.php
09/08/2010  09:50 PM    <DIR>          Serializer
03/16/2010  12:56 AM             6,202 Serializer.php
               3 File(s)          8,375 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\DefinitionCache\Decorator

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,080 Cleanup.php
03/16/2010  12:56 AM             1,408 Memory.php
03/16/2010  12:56 AM             1,011 Template.php.in
               3 File(s)          3,499 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\DefinitionCache\Serializer

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          CSS
09/08/2010  09:50 PM    <DIR>          HTML
03/16/2010  12:56 AM                73 README
09/08/2010  09:50 PM    <DIR>          Test
09/08/2010  09:50 PM    <DIR>          URI
               1 File(s)             73 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\DefinitionCache\Serializer\CSS

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\DefinitionCache\Serializer\HTML

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\DefinitionCache\Serializer\Test

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\DefinitionCache\Serializer\URI

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\EntityLookup

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             5,162 entities.ser
               1 File(s)          5,162 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\Filter

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             5,292 ExtractStyleBlocks.php
03/16/2010  12:56 AM             1,176 YouTube.php
               2 File(s)          6,468 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\HTMLModule

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               901 Bdo.php
03/16/2010  12:56 AM               608 CommonAttributes.php
03/16/2010  12:56 AM             1,207 Edit.php
03/16/2010  12:56 AM             4,829 Forms.php
03/16/2010  12:56 AM               851 Hypertext.php
03/16/2010  12:56 AM             1,300 Image.php
03/16/2010  12:56 AM             5,049 Legacy.php
03/16/2010  12:56 AM             1,312 List.php
03/16/2010  12:56 AM               408 Name.php
03/16/2010  12:56 AM               278 NonXMLCommonAttributes.php
03/16/2010  12:56 AM             1,345 Object.php
03/16/2010  12:56 AM             1,174 Presentation.php
03/16/2010  12:56 AM               887 Proprietary.php
03/16/2010  12:56 AM               939 Ruby.php
03/16/2010  12:56 AM               948 SafeEmbed.php
03/16/2010  12:56 AM             1,629 SafeObject.php
03/16/2010  12:56 AM             2,209 Scripting.php
03/16/2010  12:56 AM               661 StyleAttribute.php
03/16/2010  12:56 AM             2,191 Tables.php
03/16/2010  12:56 AM               515 Target.php
03/16/2010  12:56 AM             3,078 Text.php
09/08/2010  09:50 PM    <DIR>          Tidy
03/16/2010  12:56 AM             7,362 Tidy.php
03/16/2010  12:56 AM               276 XMLCommonAttributes.php
              23 File(s)         39,957 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\HTMLModule\Tidy

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               671 Name.php
03/16/2010  12:56 AM               835 Proprietary.php
03/16/2010  12:56 AM               620 Strict.php
03/16/2010  12:56 AM               195 Transitional.php
03/16/2010  12:56 AM               333 XHTML.php
03/16/2010  12:56 AM             7,100 XHTMLAndHTML4.php
               6 File(s)          9,754 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\Injector

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM            14,103 AutoParagraph.php
03/16/2010  12:56 AM               697 DisplayLinkURI.php
03/16/2010  12:56 AM             1,507 Linkify.php
03/16/2010  12:56 AM             1,460 PurifierLinkify.php
03/16/2010  12:56 AM             1,608 RemoveEmpty.php
03/16/2010  12:56 AM             3,272 SafeObject.php
               6 File(s)         22,647 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\Language

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          classes
09/08/2010  09:50 PM    <DIR>          messages
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\Language\classes

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               141 en-x-test.php
               1 File(s)            141 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\Language\messages

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               159 en-x-test.php
03/16/2010  12:56 AM               218 en-x-testmini.php
03/16/2010  12:56 AM             3,877 en.php
               3 File(s)          4,254 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\Lexer

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM            20,489 DirectLex.php
03/16/2010  12:56 AM             8,648 DOMLex.php
03/16/2010  12:56 AM             3,615 PEARSax3.php
03/16/2010  12:56 AM           168,940 PH5P.php
               4 File(s)        201,692 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\Printer

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               283 ConfigForm.css
03/16/2010  12:56 AM               120 ConfigForm.js
03/16/2010  12:56 AM            13,952 ConfigForm.php
03/16/2010  12:56 AM             1,131 CSSDefinition.php
03/16/2010  12:56 AM            10,350 HTMLDefinition.php
               5 File(s)         25,836 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\Strategy

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               569 Composite.php
03/16/2010  12:56 AM               519 Core.php
03/16/2010  12:56 AM            14,072 FixNesting.php
03/16/2010  12:56 AM            18,006 MakeWellFormed.php
03/16/2010  12:56 AM             7,977 RemoveForeignElements.php
03/16/2010  12:56 AM             1,143 ValidateAttributes.php
               6 File(s)         42,286 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\TagTransform

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             2,817 Font.php
03/16/2010  12:56 AM               980 Simple.php
               2 File(s)          3,797 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\Token

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               474 Comment.php
03/16/2010  12:56 AM               126 Empty.php
03/16/2010  12:56 AM               435 End.php
03/16/2010  12:56 AM               126 Start.php
03/16/2010  12:56 AM             1,708 Tag.php
03/16/2010  12:56 AM             1,036 Text.php
               6 File(s)          3,905 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\URIFilter

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               820 DisableExternal.php
03/16/2010  12:56 AM               350 DisableExternalResources.php
03/16/2010  12:56 AM               585 HostBlacklist.php
03/16/2010  12:56 AM             4,441 MakeAbsolute.php
03/16/2010  12:56 AM             2,088 Munge.php
               5 File(s)          8,284 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\URIScheme

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,484 ftp.php
03/16/2010  12:56 AM               450 http.php
03/16/2010  12:56 AM               203 https.php
03/16/2010  12:56 AM               695 mailto.php
03/16/2010  12:56 AM               510 news.php
03/16/2010  12:56 AM               461 nntp.php
               6 File(s)          3,803 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\lib\IDS\vendors\htmlpurifier\HTMLPurifier\VarParser

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             3,973 Flexible.php
03/16/2010  12:56 AM               684 Native.php
               2 File(s)          4,657 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\tests

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             2,130 allTests.php
09/08/2010  09:50 PM    <DIR>          coverage
09/08/2010  09:50 PM    <DIR>          IDS
               1 File(s)          2,130 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\tests\coverage

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               150 butter.png
03/16/2010  12:56 AM             9,913 Caching.html
03/16/2010  12:56 AM            84,980 Caching_Factory.php.html
03/16/2010  12:56 AM           105,218 Caching_File.php.html
03/16/2010  12:56 AM            19,790 Caching_Interface.php.html
03/16/2010  12:56 AM            45,002 Caching_Session.php.html
03/16/2010  12:56 AM               150 chameleon.png
03/16/2010  12:56 AM                85 close12_1.gif
03/16/2010  12:56 AM            64,831 container-min.js
03/16/2010  12:56 AM             6,709 container.css
03/16/2010  12:56 AM           600,562 Converter.php.html
03/16/2010  12:56 AM           126,091 Event.php.html
03/16/2010  12:56 AM             3,910 Filter.html
03/16/2010  12:56 AM            97,629 Filter.php.html
03/16/2010  12:56 AM           282,360 Filter_Storage.php.html
03/16/2010  12:56 AM               167 glass.png
03/16/2010  12:56 AM            15,767 index.html
03/16/2010  12:56 AM            97,826 Init.php.html
03/16/2010  12:56 AM           399,302 Monitor.php.html
03/16/2010  12:56 AM           162,265 Report.php.html
03/16/2010  12:56 AM               150 scarlet_red.png
03/16/2010  12:56 AM               141 snow.png
03/16/2010  12:56 AM             7,621 style.css
03/16/2010  12:56 AM            31,100 yahoo-dom-event.js
              24 File(s)      2,161,719 bytes

 Directory of C:\xampp\htdocs\dvwa\external\phpids\0.6\tests\IDS

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             3,771 CachingTest.php
03/16/2010  12:56 AM             2,338 EventTest.php
03/16/2010  12:56 AM             4,119 ExceptionTest.php
03/16/2010  12:56 AM             3,041 FilterTest.php
03/16/2010  12:56 AM             2,821 InitTest.php
03/16/2010  12:56 AM            72,699 MonitorTest.php
03/16/2010  12:56 AM             3,604 ReportTest.php
               7 File(s)         92,393 bytes

 Directory of C:\xampp\htdocs\dvwa\hackable

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          uploads
09/08/2010  09:50 PM    <DIR>          users
               0 File(s)              0 bytes

 Directory of C:\xampp\htdocs\dvwa\hackable\uploads

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               667 dvwa_email.png
               1 File(s)            667 bytes

 Directory of C:\xampp\htdocs\dvwa\hackable\users

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             3,681 1337.jpg
03/16/2010  12:56 AM             3,543 admin.jpg
03/16/2010  12:56 AM             3,063 gordonb.jpg
03/16/2010  12:56 AM             2,961 pablo.jpg
03/16/2010  12:56 AM             4,382 smithy.jpg
               5 File(s)         17,630 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          brute
09/08/2010  09:50 PM    <DIR>          csrf
09/08/2010  09:50 PM    <DIR>          exec
09/08/2010  09:50 PM    <DIR>          fi
09/08/2010  09:50 PM    <DIR>          sqli
09/08/2010  09:50 PM    <DIR>          sqli_blind
09/08/2010  09:50 PM    <DIR>          upload
03/16/2010  12:56 AM               526 view_help.php
03/16/2010  12:56 AM             1,472 view_source.php
03/16/2010  12:56 AM             2,175 view_source_all.php
09/08/2010  09:50 PM    <DIR>          xss_r
09/08/2010  09:50 PM    <DIR>          xss_s
               3 File(s)          4,173 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\brute

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          help
03/16/2010  12:56 AM             1,623 index.php
09/08/2010  09:50 PM    <DIR>          source
               1 File(s)          1,623 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\brute\help

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,213 help.php
               1 File(s)          1,213 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\brute\source

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               936 high.php
03/16/2010  12:56 AM               703 low.php
03/16/2010  12:56 AM               856 medium.php
               3 File(s)          2,495 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\csrf

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          help
03/16/2010  12:56 AM             1,928 index.php
09/08/2010  09:50 PM    <DIR>          source
               1 File(s)          1,928 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\csrf\help

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               890 help.php
               1 File(s)            890 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\csrf\source

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,119 high.php
03/16/2010  12:56 AM               608 low.php
03/16/2010  12:56 AM               726 medium.php
               3 File(s)          2,453 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\exec

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          help
03/16/2010  12:56 AM             1,509 index.php
09/08/2010  09:50 PM    <DIR>          source
               1 File(s)          1,509 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\exec\help

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,022 help.php
               1 File(s)          1,022 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\exec\source

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
08/26/2010  10:32 AM               903 high.php
03/16/2010  12:56 AM               378 low.php
03/16/2010  12:56 AM               583 medium.php
               3 File(s)          1,864 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\fi

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          help
08/26/2010  11:12 AM               488 include.php
03/16/2010  12:56 AM               818 index.php
09/08/2010  09:50 PM    <DIR>          source
               2 File(s)          1,306 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\fi\help

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               879 help.php
               1 File(s)            879 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\fi\source

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               184 high.php
03/16/2010  12:56 AM                69 low.php
03/16/2010  12:56 AM               193 medium.php
               3 File(s)            446 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\sqli

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          help
03/16/2010  12:56 AM             1,743 index.php
09/08/2010  09:50 PM    <DIR>          source
               1 File(s)          1,743 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\sqli\help

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,255 help.php
               1 File(s)          1,255 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\sqli\source

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               670 high.php
03/16/2010  12:56 AM               563 low.php
03/16/2010  12:56 AM               600 medium.php
               3 File(s)          1,833 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\sqli_blind

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          help
03/16/2010  12:56 AM             1,784 index.php
09/08/2010  09:50 PM    <DIR>          source
               1 File(s)          1,784 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\sqli_blind\help

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,235 help.php
               1 File(s)          1,235 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\sqli_blind\source

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               738 high.php
03/16/2010  12:56 AM               634 low.php
03/16/2010  12:56 AM               663 medium.php
               3 File(s)          2,035 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\upload

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          help
03/16/2010  12:56 AM             1,650 index.php
09/08/2010  09:50 PM    <DIR>          source
               1 File(s)          1,650 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\upload\help

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,000 help.php
               1 File(s)          1,000 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\upload\source

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               973 high.php
03/16/2010  12:56 AM               508 low.php
03/16/2010  12:56 AM               819 medium.php
               3 File(s)          2,300 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\xss_r

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          help
03/16/2010  12:56 AM             1,494 index.php
09/08/2010  09:50 PM    <DIR>          source
               1 File(s)          1,494 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\xss_r\help

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,418 help.php
               1 File(s)          1,418 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\xss_r\source

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               242 high.php
03/16/2010  12:56 AM               219 low.php
08/26/2010  10:32 AM               235 medium.php
               3 File(s)            696 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\xss_s

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
09/08/2010  09:50 PM    <DIR>          help
03/16/2010  12:56 AM             1,986 index.php
09/08/2010  09:50 PM    <DIR>          source
               1 File(s)          1,986 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\xss_s\help

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM             1,491 help.php
               1 File(s)          1,491 bytes

 Directory of C:\xampp\htdocs\dvwa\vulnerabilities\xss_s\source

09/08/2010  09:50 PM    <DIR>          .
09/08/2010  09:50 PM    <DIR>          ..
03/16/2010  12:56 AM               625 high.php
03/16/2010  12:56 AM               511 low.php
08/26/2010  10:32 AM               619 medium.php
               3 File(s)          1,755 bytes

     Total Files Listed:
             529 File(s)      5,108,576 bytes
             290 Dir(s)  12,342,906,880 bytes free
  

The parser is also capable of parsing directory listing files from various linux commands such as ‘ls -lR’ and ‘ls –R’. Examples of the format are as follows:

ls -lR:
.:
total 124
-rw-rw-r--  1 user user  2792 Aug 26  2010 about.php
-rw-rw-r--  1 user user  5066 Jun  6  2010 CHANGELOG.txt
drwxrwxr-x  2 user user  4096 Jul  1 16:52 config
-rw-rw-r--  1 user user 33107 Mar 16  2010 COPYING.txt
drwxrwxr-x  2 user user  4096 Jul  1 16:52 docs
drwxrwxr-x  6 user user  4096 Jul  1 16:52 dvwa
-rw-r--r--  1 root root     0 Jul  1 16:53 dvwa-ls-lR.txt
drwxrwxr-x  3 user user  4096 Jul  1 16:52 external
-rw-rw-r--  1 user user  1406 Sep  6  2010 favicon.ico
drwxrwxr-x  4 user user  4096 Jul  1 16:52 hackable
-rw-rw-r--  1 user user   883 Mar 16  2010 ids_log.php
-rw-rw-r--  1 user user  1878 Jun  6  2010 index.php
-rw-rw-r--  1 user user  1761 Mar 16  2010 instructions.php
-rw-rw-r--  1 user user  2580 Aug 26  2010 login.php
-rw-rw-r--  1 user user   413 Mar 16  2010 logout.php
-rw-rw-r--  1 user user   193 Mar 16  2010 phpinfo.php
-rw-rw-r--  1 user user   148 Jul  5  2009 php.ini
-rw-rw-r--  1 user user  4934 Mar 16  2010 README.txt
-rw-rw-r--  1 user user    26 Mar 16  2010 robots.txt
-rw-rw-r--  1 user user  2738 Mar 16  2010 security.php
-rw-rw-r--  1 user user  1350 Jun  6  2010 setup.php
drwxrwxr-x 11 user user  4096 Jul  1 16:52 vulnerabilities

./config:
total 8
-rw-rw-r-- 1 user user 576 Aug 26  2010 config.inc.php
-rw-rw-r-- 1 user user 576 Aug 26  2010 config.inc.php~

./docs:
total 516
-rw-rw-r-- 1 user user 526043 Aug 26  2010 DVWA-Documentation.pdf

./dvwa:
total 16
drwxrwxr-x 2 user user 4096 Jul  1 16:52 css
drwxrwxr-x 2 user user 4096 Jul  1 16:52 images
drwxrwxr-x 3 user user 4096 Jul  1 16:52 includes
drwxrwxr-x 2 user user 4096 Jul  1 16:52 js

./dvwa/css:
total 16
-rw-rw-r-- 1 user user  244 Sep  7  2010 help.css
-rw-rw-r-- 1 user user  608 Sep  6  2010 login.css
-rw-rw-r-- 1 user user 3945 Sep  6  2010 main.css
-rw-rw-r-- 1 user user  244 Sep  7  2010 source.css

./dvwa/images:
total 48
-rw-rw-r-- 1 user user   470 Mar 16  2010 dollar.png
-rw-rw-r-- 1 user user  1025 Mar 16  2010 lock.png
-rw-rw-r-- 1 user user 12875 Aug 26  2010 login_logo.png
-rw-rw-r-- 1 user user  6749 Sep  6  2010 logo.png
-rw-rw-r-- 1 user user  7023 Jun  6  2010 RandomStorm.png
-rw-rw-r-- 1 user user   716 Mar 16  2010 spanner.png
-rw-rw-r-- 1 user user   543 Mar 16  2010 warning.png

./dvwa/includes:
total 24
drwxrwxr-x 2 user user  4096 Jul  1 16:52 DBMS
-rw-rw-r-- 1 user user 13146 Sep  7  2010 dvwaPage.inc.php
-rw-rw-r-- 1 user user  2563 Mar 16  2010 dvwaPhpIds.inc.php

./dvwa/includes/DBMS:
total 12
-rw-rw-r-- 1 user user 2432 Jun  6  2010 DBMS.php
-rw-rw-r-- 1 user user 2964 Jun  6  2010 MySQL.php
-rw-rw-r-- 1 user user 3438 Jun  6  2010 PGSQL.php

./dvwa/js:
total 4
-rw-rw-r-- 1 user user 775 Mar 16  2010 dvwaPage.js

./external:
total 4
drwxrwxr-x 3 user user 4096 Jul  1 16:52 phpids

./external/phpids:
total 4
drwxrwxr-x 5 user user 4096 Jul  1 16:52 0.6

./external/phpids/0.6:
total 24
-rw-rw-r-- 1 user user  380 Mar 16  2010 build.xml
drwxrwxr-x 4 user user 4096 Jul  1 16:52 docs
drwxrwxr-x 3 user user 4096 Jul  1 16:52 lib
-rw-rw-r-- 1 user user 7639 Mar 16  2010 LICENSE
drwxrwxr-x 4 user user 4096 Jul  1 16:52 tests

./external/phpids/0.6/docs:
total 8
drwxrwxr-x 3 user user 4096 Jul  1 16:52 examples
drwxrwxr-x 4 user user 4096 Jul  1 16:52 phpdocumentor

./external/phpids/0.6/docs/examples:
total 8
drwxrwxr-x 2 user user 4096 Jul  1 16:52 cakephp
-rw-rw-r-- 1 user user 3665 Mar 16  2010 example.php

./external/phpids/0.6/docs/examples/cakephp:
total 20
-rw-rw-r-- 1 user user 7886 Mar 16  2010 ids.php
-rw-rw-r-- 1 user user  653 Mar 16  2010 intrusion.php
-rw-rw-r-- 1 user user 1019 Mar 16  2010 intrusions.sql
-rw-rw-r-- 1 user user  645 Mar 16  2010 README

./external/phpids/0.6/docs/phpdocumentor:
total 756
-rw-rw-r-- 1 user user    416 Mar 16  2010 blank.html
-rw-rw-r-- 1 user user   2719 Mar 16  2010 classtrees_PHPIDS.html
-rw-rw-r-- 1 user user 567382 Mar 16  2010 elementindex.html
-rw-rw-r-- 1 user user  60350 Mar 16  2010 elementindex_PHPIDS.html
-rw-rw-r-- 1 user user 110192 Mar 16  2010 errors.html
-rw-rw-r-- 1 user user    951 Mar 16  2010 index.html
-rw-rw-r-- 1 user user   4941 Mar 16  2010 li_PHPIDS.html
drwxrwxr-x 2 user user   4096 Jul  1 16:52 media
-rw-rw-r-- 1 user user    994 Mar 16  2010 packages.html
drwxrwxr-x 2 user user   4096 Jul  1 16:52 PHPIDS

./external/phpids/0.6/docs/phpdocumentor/media:
total 12
-rw-rw-r-- 1 user user  393 Mar 16  2010 banner.css
-rw-rw-r-- 1 user user 5407 Mar 16  2010 stylesheet.css

./external/phpids/0.6/docs/phpdocumentor/PHPIDS:
total 376
-rw-rw-r-- 1 user user  5512 Mar 16  2010 _Caching---Database.php.html
-rw-rw-r-- 1 user user  3240 Mar 16  2010 _Caching---Factory.php.html
-rw-rw-r-- 1 user user  5491 Mar 16  2010 _Caching---File.php.html
-rw-rw-r-- 1 user user  3274 Mar 16  2010 _Caching---Interface.php.html
-rw-rw-r-- 1 user user  5511 Mar 16  2010 _Caching---Memcached.php.html
-rw-rw-r-- 1 user user  5503 Mar 16  2010 _Caching---Session.php.html
-rw-rw-r-- 1 user user  3283 Mar 16  2010 _Converter.php.html
-rw-rw-r-- 1 user user  3228 Mar 16  2010 _Event.php.html
-rw-rw-r-- 1 user user  2450 Mar 16  2010 _Filter---Filter.php.html
-rw-rw-r-- 1 user user  3233 Mar 16  2010 _Filter.php.html
-rw-rw-r-- 1 user user  2498 Mar 16  2010 _Filter---Storage---Abstract.php.html
-rw-rw-r-- 1 user user  3252 Mar 16  2010 _Filter---Storage.php.html
-rw-rw-r-- 1 user user  9082 Mar 16  2010 IDS_Caching_Database.html
-rw-rw-r-- 1 user user  8924 Mar 16  2010 IDS_Caching_File.html
-rw-rw-r-- 1 user user  4652 Mar 16  2010 IDS_Caching.html
-rw-rw-r-- 1 user user  4905 Mar 16  2010 IDS_Caching_Interface.html
-rw-rw-r-- 1 user user  9029 Mar 16  2010 IDS_Caching_Memcached.html
-rw-rw-r-- 1 user user  8840 Mar 16  2010 IDS_Caching_Session.html
-rw-rw-r-- 1 user user 26828 Mar 16  2010 IDS_Converter.html
-rw-rw-r-- 1 user user 16146 Mar 16  2010 IDS_Event.html
-rw-rw-r-- 1 user user 14861 Mar 16  2010 IDS_Filter.html
-rw-rw-r-- 1 user user 10760 Mar 16  2010 IDS_Filter_Storage_Abstract.html
-rw-rw-r-- 1 user user 14208 Mar 16  2010 IDS_Filter_Storage.html
-rw-rw-r-- 1 user user 14648 Mar 16  2010 IDS_Init.html
-rw-rw-r-- 1 user user  8396 Mar 16  2010 IDS_Log_Composite.html
-rw-rw-r-- 1 user user  7433 Mar 16  2010 IDS_Log_Database.html
-rw-rw-r-- 1 user user 11691 Mar 16  2010 IDS_Log_Email.html
-rw-rw-r-- 1 user user  8658 Mar 16  2010 IDS_Log_File.html
-rw-rw-r-- 1 user user  4213 Mar 16  2010 IDS_Log_Interface.html
-rw-rw-r-- 1 user user 18064 Mar 16  2010 IDS_Monitor.html
-rw-rw-r-- 1 user user 21458 Mar 16  2010 IDS_Report.html
-rw-rw-r-- 1 user user  3225 Mar 16  2010 _Init.php.html
-rw-rw-r-- 1 user user  5485 Mar 16  2010 _Log---Composite.php.html
-rw-rw-r-- 1 user user  5491 Mar 16  2010 _Log---Database.php.html
-rw-rw-r-- 1 user user  5477 Mar 16  2010 _Log---Email.php.html
-rw-rw-r-- 1 user user  5472 Mar 16  2010 _Log---File.php.html
-rw-rw-r-- 1 user user  3267 Mar 16  2010 _Log---Interface.php.html
-rw-rw-r-- 1 user user  3234 Mar 16  2010 _Monitor.php.html
-rw-rw-r-- 1 user user  3233 Mar 16  2010 _Report.php.html

./external/phpids/0.6/lib:
total 4
drwxrwxr-x 8 user user 4096 Jul  1 16:52 IDS

./external/phpids/0.6/lib/IDS:
total 152
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Caching
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Config
-rw-rw-r-- 1 user user 22495 Mar 16  2010 Converter.php
-rw-rw-r-- 1 user user 16360 Mar 16  2010 default_filter.json
-rw-rw-r-- 1 user user 30021 Mar 16  2010 default_filter.xml
-rw-rw-r-- 1 user user  5471 Mar 16  2010 Event.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Filter
-rw-rw-r-- 1 user user  4392 Mar 16  2010 Filter.php
-rw-rw-r-- 1 user user  6372 Mar 16  2010 Init.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Log
-rw-rw-r-- 1 user user 18660 Mar 16  2010 Monitor.php
-rw-rw-r-- 1 user user  9071 Mar 16  2010 Report.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 tmp
drwxrwxr-x 3 user user  4096 Jul  1 16:52 vendors

./external/phpids/0.6/lib/IDS/Caching:
total 36
-rw-rw-r-- 1 user user 7198 Mar 16  2010 Database.php
-rw-rw-r-- 1 user user 2552 Mar 16  2010 Factory.php
-rw-rw-r-- 1 user user 4776 Mar 16  2010 File.php
-rw-rw-r-- 1 user user 1948 Mar 16  2010 Interface.php
-rw-rw-r-- 1 user user 5890 Mar 16  2010 Memcached.php
-rw-rw-r-- 1 user user 3512 Mar 16  2010 Session.php

./external/phpids/0.6/lib/IDS/Config:
total 4
-rw-rw-r-- 1 user user 2772 Mar 16  2010 Config.ini

./external/phpids/0.6/lib/IDS/Filter:
total 12
-rw-rw-r-- 1 user user 11162 Mar 16  2010 Storage.php

./external/phpids/0.6/lib/IDS/Log:
total 36
-rw-rw-r-- 1 user user  3639 Mar 16  2010 Composite.php
-rw-rw-r-- 1 user user  7591 Mar 16  2010 Database.php
-rw-rw-r-- 1 user user 11193 Mar 16  2010 Email.php
-rw-rw-r-- 1 user user  6333 Mar 16  2010 File.php
-rw-rw-r-- 1 user user  1834 Mar 16  2010 Interface.php

./external/phpids/0.6/lib/IDS/tmp:
total 4
-rw-rw-r-- 1 user user 319 Mar 16  2010 phpids_log.txt

./external/phpids/0.6/lib/IDS/vendors:
total 4
drwxrwxr-x 3 user user 4096 Jul  1 16:52 htmlpurifier

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier:
total 60
drwxrwxr-x 21 user user  4096 Jul  1 16:52 HTMLPurifier
-rw-rw-r--  1 user user   625 Mar 16  2010 HTMLPurifier.autoload.php
-rw-rw-r--  1 user user   260 Mar 16  2010 HTMLPurifier.auto.php
-rw-rw-r--  1 user user   545 Mar 16  2010 HTMLPurifier.func.php
-rw-rw-r--  1 user user  9318 Mar 16  2010 HTMLPurifier.includes.php
-rw-rw-r--  1 user user   969 Mar 16  2010 HTMLPurifier.kses.php
-rw-rw-r--  1 user user   221 Mar 16  2010 HTMLPurifier.path.php
-rw-rw-r--  1 user user  9183 Mar 16  2010 HTMLPurifier.php
-rw-rw-r--  1 user user 11852 Mar 16  2010 HTMLPurifier.safe-includes.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier:
total 448
-rw-rw-r-- 1 user user  4606 Mar 16  2010 AttrCollections.php
drwxrwxr-x 5 user user  4096 Jul  1 16:52 AttrDef
-rw-rw-r-- 1 user user  3345 Mar 16  2010 AttrDef.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 AttrTransform
-rw-rw-r-- 1 user user  1910 Mar 16  2010 AttrTransform.php
-rw-rw-r-- 1 user user  2776 Mar 16  2010 AttrTypes.php
-rw-rw-r-- 1 user user  6782 Mar 16  2010 AttrValidator.php
-rw-rw-r-- 1 user user  3695 Mar 16  2010 Bootstrap.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 ChildDef
-rw-rw-r-- 1 user user  1458 Mar 16  2010 ChildDef.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 ConfigDef
-rw-rw-r-- 1 user user   133 Mar 16  2010 ConfigDef.php
-rw-rw-r-- 1 user user 18684 Mar 16  2010 Config.php
drwxrwxr-x 5 user user  4096 Jul  1 16:52 ConfigSchema
-rw-rw-r-- 1 user user  8775 Mar 16  2010 ConfigSchema.php
-rw-rw-r-- 1 user user  5474 Mar 16  2010 ContentSets.php
-rw-rw-r-- 1 user user  2485 Mar 16  2010 Context.php
-rw-rw-r-- 1 user user 12764 Mar 16  2010 CSSDefinition.php
drwxrwxr-x 4 user user  4096 Jul  1 16:52 DefinitionCache
-rw-rw-r-- 1 user user  2906 Mar 16  2010 DefinitionCacheFactory.php
-rw-rw-r-- 1 user user  3399 Mar 16  2010 DefinitionCache.php
-rw-rw-r-- 1 user user   851 Mar 16  2010 Definition.php
-rw-rw-r-- 1 user user  1463 Mar 16  2010 Doctype.php
-rw-rw-r-- 1 user user  3647 Mar 16  2010 DoctypeRegistry.php
-rw-rw-r-- 1 user user  5818 Mar 16  2010 ElementDef.php
-rw-rw-r-- 1 user user 19071 Mar 16  2010 Encoder.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 EntityLookup
-rw-rw-r-- 1 user user  1330 Mar 16  2010 EntityLookup.php
-rw-rw-r-- 1 user user  4954 Mar 16  2010 EntityParser.php
-rw-rw-r-- 1 user user  7697 Mar 16  2010 ErrorCollector.php
-rw-rw-r-- 1 user user  1713 Mar 16  2010 ErrorStruct.php
-rw-rw-r-- 1 user user   170 Mar 16  2010 Exception.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Filter
-rw-rw-r-- 1 user user  1370 Mar 16  2010 Filter.php
-rw-rw-r-- 1 user user  6876 Mar 16  2010 Generator.php
-rw-rw-r-- 1 user user 16541 Mar 16  2010 HTMLDefinition.php
drwxrwxr-x 3 user user  4096 Jul  1 16:52 HTMLModule
-rw-rw-r-- 1 user user 14992 Mar 16  2010 HTMLModuleManager.php
-rw-rw-r-- 1 user user  9794 Mar 16  2010 HTMLModule.php
-rw-rw-r-- 1 user user  1590 Mar 16  2010 IDAccumulator.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Injector
-rw-rw-r-- 1 user user  8683 Mar 16  2010 Injector.php
drwxrwxr-x 4 user user  4096 Jul  1 16:52 Language
-rw-rw-r-- 1 user user  6776 Mar 16  2010 LanguageFactory.php
-rw-rw-r-- 1 user user  5620 Mar 16  2010 Language.php
-rw-rw-r-- 1 user user  3285 Mar 16  2010 Length.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Lexer
-rw-rw-r-- 1 user user 11181 Mar 16  2010 Lexer.php
-rw-rw-r-- 1 user user  3473 Mar 16  2010 PercentEncoder.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Printer
-rw-rw-r-- 1 user user  5091 Mar 16  2010 Printer.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Strategy
-rw-rw-r-- 1 user user   695 Mar 16  2010 Strategy.php
-rw-rw-r-- 1 user user  3189 Mar 16  2010 StringHashParser.php
-rw-rw-r-- 1 user user  1001 Mar 16  2010 StringHash.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 TagTransform
-rw-rw-r-- 1 user user  1027 Mar 16  2010 TagTransform.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 Token
-rw-rw-r-- 1 user user  2765 Mar 16  2010 TokenFactory.php
-rw-rw-r-- 1 user user  1626 Mar 16  2010 Token.php
-rw-rw-r-- 1 user user  9686 Mar 16  2010 UnitConverter.php
-rw-rw-r-- 1 user user  3052 Mar 16  2010 URIDefinition.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 URIFilter
-rw-rw-r-- 1 user user  1339 Mar 16  2010 URIFilter.php
-rw-rw-r-- 1 user user  2400 Mar 16  2010 URIParser.php
-rw-rw-r-- 1 user user  6732 Mar 16  2010 URI.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 URIScheme
-rw-rw-r-- 1 user user  1143 Mar 16  2010 URIScheme.php
-rw-rw-r-- 1 user user  2333 Mar 16  2010 URISchemeRegistry.php
drwxrwxr-x 2 user user  4096 Jul  1 16:52 VarParser
-rw-rw-r-- 1 user user   147 Mar 16  2010 VarParserException.php
-rw-rw-r-- 1 user user  5367 Mar 16  2010 VarParser.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef:
total 40
drwxrwxr-x 2 user user 4096 Jul  1 16:52 CSS
-rw-rw-r-- 1 user user 3242 Mar 16  2010 CSS.php
-rw-rw-r-- 1 user user 2070 Mar 16  2010 Enum.php
drwxrwxr-x 2 user user 4096 Jul  1 16:52 HTML
-rw-rw-r-- 1 user user 2377 Mar 16  2010 Integer.php
-rw-rw-r-- 1 user user 2302 Mar 16  2010 Lang.php
-rw-rw-r-- 1 user user  997 Mar 16  2010 Switch.php
-rw-rw-r-- 1 user user  269 Mar 16  2010 Text.php
drwxrwxr-x 3 user user 4096 Jul  1 16:52 URI
-rw-rw-r-- 1 user user 2325 Mar 16  2010 URI.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS:
total 76
-rw-rw-r-- 1 user user  570 Mar 16  2010 AlphaValue.php
-rw-rw-r-- 1 user user 2882 Mar 16  2010 Background.php
-rw-rw-r-- 1 user user 3703 Mar 16  2010 BackgroundPosition.php
-rw-rw-r-- 1 user user 1328 Mar 16  2010 Border.php
-rw-rw-r-- 1 user user 2684 Mar 16  2010 Color.php
-rw-rw-r-- 1 user user 1128 Mar 16  2010 Composite.php
-rw-rw-r-- 1 user user  785 Mar 16  2010 DenyElementDecorator.php
-rw-rw-r-- 1 user user 1949 Mar 16  2010 Filter.php
-rw-rw-r-- 1 user user 3375 Mar 16  2010 FontFamily.php
-rw-rw-r-- 1 user user 6169 Mar 16  2010 Font.php
-rw-rw-r-- 1 user user 1323 Mar 16  2010 ImportantDecorator.php
-rw-rw-r-- 1 user user 1440 Mar 16  2010 Length.php
-rw-rw-r-- 1 user user 2430 Mar 16  2010 ListStyle.php
-rw-rw-r-- 1 user user 1829 Mar 16  2010 Multiple.php
-rw-rw-r-- 1 user user 1947 Mar 16  2010 Number.php
-rw-rw-r-- 1 user user 1076 Mar 16  2010 Percentage.php
-rw-rw-r-- 1 user user 1012 Mar 16  2010 TextDecoration.php
-rw-rw-r-- 1 user user 2080 Mar 16  2010 URI.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML:
total 36
-rw-rw-r-- 1 user user  585 Mar 16  2010 Bool.php
-rw-rw-r-- 1 user user  875 Mar 16  2010 Color.php
-rw-rw-r-- 1 user user  587 Mar 16  2010 FrameTarget.php
-rw-rw-r-- 1 user user 2403 Mar 16  2010 ID.php
-rw-rw-r-- 1 user user 1057 Mar 16  2010 Length.php
-rw-rw-r-- 1 user user 1496 Mar 16  2010 LinkTypes.php
-rw-rw-r-- 1 user user 1083 Mar 16  2010 MultiLength.php
-rw-rw-r-- 1 user user 1649 Mar 16  2010 Nmtokens.php
-rw-rw-r-- 1 user user 1343 Mar 16  2010 Pixels.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI:
total 20
drwxrwxr-x 2 user user 4096 Jul  1 16:52 Email
-rw-rw-r-- 1 user user  282 Mar 16  2010 Email.php
-rw-rw-r-- 1 user user 2125 Mar 16  2010 Host.php
-rw-rw-r-- 1 user user  870 Mar 16  2010 IPv4.php
-rw-rw-r-- 1 user user 2800 Mar 16  2010 IPv6.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI/Email:
total 4
-rw-rw-r-- 1 user user 646 Mar 16  2010 SimpleCheck.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform:
total 68
-rw-rw-r-- 1 user user  568 Mar 16  2010 Background.php
-rw-rw-r-- 1 user user  470 Mar 16  2010 BdoDir.php
-rw-rw-r-- 1 user user  544 Mar 16  2010 BgColor.php
-rw-rw-r-- 1 user user  900 Mar 16  2010 BoolToCSS.php
-rw-rw-r-- 1 user user  500 Mar 16  2010 Border.php
-rw-rw-r-- 1 user user 1577 Mar 16  2010 EnumToCSS.php
-rw-rw-r-- 1 user user 1221 Mar 16  2010 ImgRequired.php
-rw-rw-r-- 1 user user 1177 Mar 16  2010 ImgSpace.php
-rw-rw-r-- 1 user user 1324 Mar 16  2010 Input.php
-rw-rw-r-- 1 user user  756 Mar 16  2010 Lang.php
-rw-rw-r-- 1 user user  726 Mar 16  2010 Length.php
-rw-rw-r-- 1 user user  459 Mar 16  2010 Name.php
-rw-rw-r-- 1 user user  372 Mar 16  2010 SafeEmbed.php
-rw-rw-r-- 1 user user  380 Mar 16  2010 SafeObject.php
-rw-rw-r-- 1 user user 1619 Mar 16  2010 SafeParam.php
-rw-rw-r-- 1 user user  354 Mar 16  2010 ScriptRequired.php
-rw-rw-r-- 1 user user  399 Mar 16  2010 Textarea.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ChildDef:
total 32
-rw-rw-r-- 1 user user 1575 Mar 16  2010 Chameleon.php
-rw-rw-r-- 1 user user 2901 Mar 16  2010 Custom.php
-rw-rw-r-- 1 user user  620 Mar 16  2010 Empty.php
-rw-rw-r-- 1 user user  830 Mar 16  2010 Optional.php
-rw-rw-r-- 1 user user 3806 Mar 16  2010 Required.php
-rw-rw-r-- 1 user user 3283 Mar 16  2010 StrictBlockquote.php
-rw-rw-r-- 1 user user 5822 Mar 16  2010 Table.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigDef:
total 12
-rw-rw-r-- 1 user user  475 Mar 16  2010 DirectiveAlias.php
-rw-rw-r-- 1 user user 1481 Mar 16  2010 Directive.php
-rw-rw-r-- 1 user user  179 Mar 16  2010 Namespace.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigSchema:
total 52
drwxrwxr-x 2 user user 4096 Jul  1 16:52 Builder
-rw-rw-r-- 1 user user  152 Mar 16  2010 Exception.php
drwxrwxr-x 2 user user 4096 Jul  1 16:52 Interchange
-rw-rw-r-- 1 user user 6252 Mar 16  2010 InterchangeBuilder.php
-rw-rw-r-- 1 user user 1563 Mar 16  2010 Interchange.php
drwxrwxr-x 2 user user 4096 Jul  1 16:52 schema
-rw-rw-r-- 1 user user 7540 Mar 16  2010 schema.ser
-rw-rw-r-- 1 user user 1973 Mar 16  2010 ValidatorAtom.php
-rw-rw-r-- 1 user user 8665 Mar 16  2010 Validator.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigSchema/Builder:
total 8
-rw-rw-r-- 1 user user 1519 Mar 16  2010 ConfigSchema.php
-rw-rw-r-- 1 user user 4005 Mar 16  2010 Xml.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigSchema/Interchange:
total 12
-rw-rw-r-- 1 user user 1858 Mar 16  2010 Directive.php
-rw-rw-r-- 1 user user  783 Mar 16  2010 Id.php
-rw-rw-r-- 1 user user  300 Mar 16  2010 Namespace.php
  
ls -R:
.:
about.php
CHANGELOG.txt
config
COPYING.txt
docs
dvwa
dvwa-ls-lR.txt
dvwa-ls-R.txt
external
favicon.ico
hackable
ids_log.php
index.php
instructions.php
login.php
logout.php
phpinfo.php
php.ini
README.txt
robots.txt
security.php
setup.php
vulnerabilities

./config:
config.inc.php
config.inc.php~

./docs:
DVWA-Documentation.pdf

./dvwa:
css
images
includes
js

./dvwa/css:
help.css
login.css
main.css
source.css

./dvwa/images:
dollar.png
lock.png
login_logo.png
logo.png
RandomStorm.png
spanner.png
warning.png

./dvwa/includes:
DBMS
dvwaPage.inc.php
dvwaPhpIds.inc.php

./dvwa/includes/DBMS:
DBMS.php
MySQL.php
PGSQL.php

./dvwa/js:
dvwaPage.js

./external:
phpids

./external/phpids:
0.6

./external/phpids/0.6:
build.xml
docs
lib
LICENSE
tests

./external/phpids/0.6/docs:
examples
phpdocumentor

./external/phpids/0.6/docs/examples:
cakephp
example.php

./external/phpids/0.6/docs/examples/cakephp:
ids.php
intrusion.php
intrusions.sql
README

./external/phpids/0.6/docs/phpdocumentor:
blank.html
classtrees_PHPIDS.html
elementindex.html
elementindex_PHPIDS.html
errors.html
index.html
li_PHPIDS.html
media
packages.html
PHPIDS

./external/phpids/0.6/docs/phpdocumentor/media:
banner.css
stylesheet.css

./external/phpids/0.6/docs/phpdocumentor/PHPIDS:
_Caching---Database.php.html
_Caching---Factory.php.html
_Caching---File.php.html
_Caching---Interface.php.html
_Caching---Memcached.php.html
_Caching---Session.php.html
_Converter.php.html
_Event.php.html
_Filter---Filter.php.html
_Filter.php.html
_Filter---Storage---Abstract.php.html
_Filter---Storage.php.html
IDS_Caching_Database.html
IDS_Caching_File.html
IDS_Caching.html
IDS_Caching_Interface.html
IDS_Caching_Memcached.html
IDS_Caching_Session.html
IDS_Converter.html
IDS_Event.html
IDS_Filter.html
IDS_Filter_Storage_Abstract.html
IDS_Filter_Storage.html
IDS_Init.html
IDS_Log_Composite.html
IDS_Log_Database.html
IDS_Log_Email.html
IDS_Log_File.html
IDS_Log_Interface.html
IDS_Monitor.html
IDS_Report.html
_Init.php.html
_Log---Composite.php.html
_Log---Database.php.html
_Log---Email.php.html
_Log---File.php.html
_Log---Interface.php.html
_Monitor.php.html
_Report.php.html

./external/phpids/0.6/lib:
IDS

./external/phpids/0.6/lib/IDS:
Caching
Config
Converter.php
default_filter.json
default_filter.xml
Event.php
Filter
Filter.php
Init.php
Log
Monitor.php
Report.php
tmp
vendors

./external/phpids/0.6/lib/IDS/Caching:
Database.php
Factory.php
File.php
Interface.php
Memcached.php
Session.php

./external/phpids/0.6/lib/IDS/Config:
Config.ini

./external/phpids/0.6/lib/IDS/Filter:
Storage.php

./external/phpids/0.6/lib/IDS/Log:
Composite.php
Database.php
Email.php
File.php
Interface.php

./external/phpids/0.6/lib/IDS/tmp:
phpids_log.txt

./external/phpids/0.6/lib/IDS/vendors:
htmlpurifier

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier:
HTMLPurifier
HTMLPurifier.autoload.php
HTMLPurifier.auto.php
HTMLPurifier.func.php
HTMLPurifier.includes.php
HTMLPurifier.kses.php
HTMLPurifier.path.php
HTMLPurifier.php
HTMLPurifier.safe-includes.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier:
AttrCollections.php
AttrDef
AttrDef.php
AttrTransform
AttrTransform.php
AttrTypes.php
AttrValidator.php
Bootstrap.php
ChildDef
ChildDef.php
ConfigDef
ConfigDef.php
Config.php
ConfigSchema
ConfigSchema.php
ContentSets.php
Context.php
CSSDefinition.php
DefinitionCache
DefinitionCacheFactory.php
DefinitionCache.php
Definition.php
Doctype.php
DoctypeRegistry.php
ElementDef.php
Encoder.php
EntityLookup
EntityLookup.php
EntityParser.php
ErrorCollector.php
ErrorStruct.php
Exception.php
Filter
Filter.php
Generator.php
HTMLDefinition.php
HTMLModule
HTMLModuleManager.php
HTMLModule.php
IDAccumulator.php
Injector
Injector.php
Language
LanguageFactory.php
Language.php
Length.php
Lexer
Lexer.php
PercentEncoder.php
Printer
Printer.php
Strategy
Strategy.php
StringHashParser.php
StringHash.php
TagTransform
TagTransform.php
Token
TokenFactory.php
Token.php
UnitConverter.php
URIDefinition.php
URIFilter
URIFilter.php
URIParser.php
URI.php
URIScheme
URIScheme.php
URISchemeRegistry.php
VarParser
VarParserException.php
VarParser.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef:
CSS
CSS.php
Enum.php
HTML
Integer.php
Lang.php
Switch.php
Text.php
URI
URI.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/CSS:
AlphaValue.php
Background.php
BackgroundPosition.php
Border.php
Color.php
Composite.php
DenyElementDecorator.php
Filter.php
FontFamily.php
Font.php
ImportantDecorator.php
Length.php
ListStyle.php
Multiple.php
Number.php
Percentage.php
TextDecoration.php
URI.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/HTML:
Bool.php
Color.php
FrameTarget.php
ID.php
Length.php
LinkTypes.php
MultiLength.php
Nmtokens.php
Pixels.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI:
Email
Email.php
Host.php
IPv4.php
IPv6.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrDef/URI/Email:
SimpleCheck.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/AttrTransform:
Background.php
BdoDir.php
BgColor.php
BoolToCSS.php
Border.php
EnumToCSS.php
ImgRequired.php
ImgSpace.php
Input.php
Lang.php
Length.php
Name.php
SafeEmbed.php
SafeObject.php
SafeParam.php
ScriptRequired.php
Textarea.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ChildDef:
Chameleon.php
Custom.php
Empty.php
Optional.php
Required.php
StrictBlockquote.php
Table.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigDef:
DirectiveAlias.php
Directive.php
Namespace.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigSchema:
Builder
Exception.php
Interchange
InterchangeBuilder.php
Interchange.php
schema
schema.ser
ValidatorAtom.php
Validator.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigSchema/Builder:
ConfigSchema.php
Xml.php

./external/phpids/0.6/lib/IDS/vendors/htmlpurifier/HTMLPurifier/ConfigSchema/Interchange:
Directive.php
Id.php
Namespace.php
  

Now that we have a directory listing for our application, let’s parse out all of the directories and files and create valid URLs. Click the “Generate URL List” button to start the parsing. Tip: If the generated URLs don’t look correct you can modify the fields on the left of the GUI and regenerate the list or copy the list and use your own text editor to make changes. (Please e-mail SmeegeSec@gmail.com with any parsing issues or suggestions)

A text area is populated with the URLs and the total count of directories and files processed.

At this point we have a few options. We can take our list of URLs and use them in Burp’s Intruder. To do this it would be very easy, all that needs to be done is remove the protocol, hostname, and port from each URL within a text editor. From there we take the path of each resource as a payload in a GET request in Intruder. We could then look to see which resources we are able to reach by analyzing status codes and content length. A second option is built into the extension via the “Import URL List to Burp Site Map” button. This button makes a request to each URL in the list (with cookie information, if it was found) and if a valid response is returned, will add the request and response to Burp’s Site Map. Requests with keywords such as logout, logoff, etc. are skipped to avoid ending sessions. The import to site map functionality was one of the main features I wanted to implement.

Warning: Actual requests are being made. Remove any resources you don't want being made, such as delete_database.php!! Regex to remove resources will be added in updates.

Done! A message dialog tells the user how many URLs were valid and imported into the site map. In the above image you can see a full site map and proxy history which was not found by spidering or brute forcing directories/files, but rather a simple directory and file listing of the application. With a full site map we are now ahead of the game. If you have multiple testers testing an application you can save the state in Burp and distribute it to save time, almost completely bypassing the discovery phase.

Note: So far the parsing does not consider virtual directories or different URL mappings from different web frameworks. Future updates may include parsing of mapping files such as ASP.NET’s web.config and Java’s web.xml.

Tip: Running a plugin multiple times or multiple plugins at a time may require increased PermGen, an example to increase the max when launching Burp would be:

java -XX:MaxPermSize=1G -jar burp.jar

Also, please provide feedback if you use this extension. With many different output formats for directory and file listings it can be difficult to write a dynamic parser which works for every format. If you have a listing file which is not being properly parsed please contact me so I can include it in an update. Thanks!

Click Here to Download Source Code