SecLists icon indicating copy to clipboard operation
SecLists copied to clipboard

Published 20 hours ago verified publisher icon danielmiessler

Create forefront-identity-management

Open J-GainSec opened this issue 2 years ago • 3 comments

Sourced from https://raw.githubusercontent.com/GainSec/TreeHouse-Wordlists/master/Microsoft-Forefront-Identity-Management-2010.txt

Wordlist for Microsoft Forefront Identity Management 2010

J-GainSec avatar Jun 27 '22 17:06 J-GainSec

What could this wordlist be used for? Please provide a specific example

If this wordlist is for detecting a "Microsoft Forefront Identity Management 2010" instance, it’s too long

Also how did you make this wordlist?

ItsIgnacioPortal avatar Jun 28 '22 11:06 ItsIgnacioPortal

It's for enumerating what files/functionality are being used to discover the attack surface of a Microsoft FIM instance. For example, determining access controls of each user, the xml files within /config/* may contain sensitive data. Depending on what type of smart-card is being used some of the aspx files may or may not be referenced but that doesn't mean they don't exist or aren't accessible.

From testing a Microsoft FIM instance.

Also I already renamed it for SecLists to "forefront-identity-management"

J-GainSec avatar Jun 28 '22 13:06 J-GainSec

Create a frontend and backend integrated platform

1989shack avatar Jul 15 '22 23:07 1989shack

Thank you!

g0tmi1k avatar Aug 02 '22 05:08 g0tmi1k