SimpleHTTPServer - Why taking the time do things right is worth it

# Intro I've long been inspired by Shodan talks, loot talks, and general mischief. I saw a random tweet probably 7 or 8 years ago that showed what quickly became my favorite query to perform when I go on a Shodan safari. ![[Pasted image 20241018200007.png]] # Why do we keep recommending this? There's something in our nature when we build and automate things to take the path of least resistance. When I was going through my OSCP and doing Vulnhubs back in 2017 (This was right at the start of hackthebox), practically every tips and tricks blog post mentioned using python's SimpleHTTPServer (now http.server in python3) module. It's a super handy trick, but we need to do a better job of explaining the best practices and security implications, perhaps with a big red warning label. ![[Pasted image 20241018200543.png]] ![[Pasted image 20241018200916.png]] ![[Pasted image 20241018201019.png]] ![[Pasted image 20241018201201.png]] ![[Pasted image 20241018201419.png]] # Slow down bucko, what's a python and why do I care? Running: ```bash ## Probably don't do this actually cd / python3 -m http.server ## But seriously, you shouldn't do that ``` Exposes the current directory in a simple webserver. Wow! ![[Pasted image 20241018201943.png]] If you're paying close attention you may have noticed that's the whole fucking filesystem you just shared. I took that screenshot from a live system I stumbled upon. In real life. # Ok, but is anyone actually doing this? Don't people have firewalls? ![[Pasted image 20241018200007.png]] # Whatever, gimme the loot! ## General Bad Ideas ![[Pasted image 20241018224650.png]] ![[Pasted image 20241019000035.png]] ![[Pasted image 20241019001631.png]] ![[Pasted image 20241019003637.png]] ## Pirated Adult Entertainment ![[Pasted image 20241018223159.png]] ## Pirated TV/Movies ![[Pasted image 20241018225600.png]] ## Fellow Hackers ![[Pasted image 20241018224125.png]] ![[Pasted image 20241018230747.png]] ![[Pasted image 20241018230829.png]] ![[Pasted image 20241018225857.png]] ![[Pasted image 20241019003412.png]] ![[Pasted image 20241019004309.png]] ![[Pasted image 20241019004738.png]] This was a fun one ## Cool Projects/Student Projects ![[Pasted image 20241018225042.png]] ![[Pasted image 20241019000628.png]] ![[Pasted image 20241018223558.png]] ## Random Things Russian coal shipping manifest? ![[Pasted image 20241018231832.png]] This guy's forehead *I actually got an alert for this site from ublock and found some metasploit things inside ![[Pasted image 20241018230641.png]] ![[Pasted image 20241018224046.png]] ![[Pasted image 20241019001258.png]] ![[Pasted image 20241019002302.png]] ![[Pasted image 20241020155649.png]]