437 lines
6.0 KiB
Plaintext
437 lines
6.0 KiB
Plaintext
# This list can be generated from restricted-files.data by running the following shell command:
|
|
# body_start=$(grep -n -E -m 1 '^[^#$]' rules/restricted-upload.data | cut -d: -f1)
|
|
# ed -s rules/restricted-upload.data <<EOF
|
|
# $((body_start)),\$d
|
|
# w
|
|
# q
|
|
# EOF
|
|
# wget -O english-extended.txt https://raw.githubusercontent.com/coreruleset/coreruleset/refs/tags/v4.0.0/util/fp-finder/english-extended.txt
|
|
# tmpfile="$(mktemp)"
|
|
# awk ' !/^#/ && NF {
|
|
# n = split($0, segments, "/");
|
|
# word = segments[n];
|
|
# if (length(word) > 3) print word
|
|
# }' rules/restricted-files.data | sort | uniq > "$tmpfile"
|
|
# crs-toolchain util fp-finder "$tmpfile" -e english-extended.txt >> rules/restricted-upload.data
|
|
# rm -f "$tmpfile" english-extended.txt
|
|
.DS_Store
|
|
.access/
|
|
.addressbook
|
|
.bash_
|
|
.bashrc
|
|
.boto
|
|
.bowerrc
|
|
.cache/
|
|
.config.local.php
|
|
.coverage
|
|
.coveralls.yml
|
|
.credentials
|
|
.cshrc
|
|
.cvs
|
|
.deployment-secrets.txt
|
|
.dockerignore
|
|
.env
|
|
.envrc
|
|
.eslintignore
|
|
.eslintrc
|
|
.fbcindex
|
|
.fish
|
|
.forward
|
|
.ftpconfig
|
|
.gitattributes
|
|
.gitconfig
|
|
.gitignore
|
|
.gitkeep
|
|
.gitlab-ci.yml
|
|
.gitmodules
|
|
.google_authenticator
|
|
.hgignore
|
|
.history
|
|
.htaccess
|
|
.htdigest
|
|
.htpasswd
|
|
.idea
|
|
.ipynb_checkpoints/
|
|
.jshintrc
|
|
.ksh_history
|
|
.lesshst
|
|
.lhistory
|
|
.lighttpdpassword
|
|
.lldb-history
|
|
.lynx_cookies
|
|
.msmtprc
|
|
.my.cnf
|
|
.myscmserverinfo
|
|
.mysql_history
|
|
.nano_history
|
|
.netrc
|
|
.node_repl_history
|
|
.npmrc
|
|
.nsconfig
|
|
.nsr
|
|
.oh-my-
|
|
.pac
|
|
.pass
|
|
.passwd
|
|
.password-store
|
|
.pearrc
|
|
.pgpass
|
|
.php_cs.dist
|
|
.php_history
|
|
.phpcs.xml
|
|
.phpcs.xml.dist
|
|
.pinerc
|
|
.proclog
|
|
.procmailrc
|
|
.profile
|
|
.psql_history
|
|
.pwd
|
|
.pytest_cache/
|
|
.python_history
|
|
.rediscli_history
|
|
.remote-sync.json
|
|
.rhistory
|
|
.rhosts
|
|
.s3cfg
|
|
.secrets
|
|
.selected_editor
|
|
.settings/
|
|
.sh_history
|
|
.sql.001
|
|
.sql.7z
|
|
.sql.ace
|
|
.sql.arj
|
|
.sql.bz
|
|
.sql.cpio
|
|
.sql.gz
|
|
.sql.lha
|
|
.sql.lz
|
|
.sql.pa
|
|
.sql.pea
|
|
.sql.r00
|
|
.sql.r01
|
|
.sql.r02
|
|
.sql.r03
|
|
.sql.r04
|
|
.sql.r05
|
|
.sql.r06
|
|
.sql.r07
|
|
.sql.r08
|
|
.sql.r09
|
|
.sql.rar
|
|
.sql.rev
|
|
.sql.tar
|
|
.sql.taz
|
|
.sql.tbz
|
|
.sql.tgz
|
|
.sql.txz
|
|
.sql.uha
|
|
.sql.xz
|
|
.sql.yz1
|
|
.sql.z
|
|
.sqlite_history
|
|
.svnignore
|
|
.tcshrc
|
|
.terraform.lock.hcl
|
|
.terraform/
|
|
.tmux.conf
|
|
.tools/
|
|
.travis.yaml
|
|
.travis.yml
|
|
.user.ini
|
|
.viminfo
|
|
.vimrc
|
|
.vscode
|
|
.web.config.swp
|
|
.wget-hsts
|
|
.ws_ftp.ini
|
|
.www_acl
|
|
.wwwacl
|
|
.xauthority
|
|
.yarnrc
|
|
.zhistory
|
|
.zsh_history
|
|
.zshenv
|
|
.zshrc
|
|
BlockCypher.log
|
|
|
|
|
|
|
|
|
|
__pycache__/
|
|
acpi
|
|
asound
|
|
auth.json
|
|
aws-key.yaml
|
|
aws-key.yml
|
|
aws.yaml
|
|
aws.yml
|
|
boot.ini
|
|
bootconfig
|
|
bower.json
|
|
buddyinfo
|
|
cgroups
|
|
cmdline
|
|
compose.yaml
|
|
compose.yml
|
|
composer.json
|
|
composer.lock
|
|
config-dev.asp
|
|
config-dev.ini
|
|
config-dev.json
|
|
config-dev.php
|
|
config-dev.pl
|
|
config-dev.py
|
|
config-dev.rb
|
|
config-dev.toml
|
|
config-dev.txt
|
|
config-dev.xml
|
|
config-dev.yaml
|
|
config-dev.yml
|
|
config-prod.asp
|
|
config-prod.ini
|
|
config-prod.json
|
|
config-prod.php
|
|
config-prod.pl
|
|
config-prod.py
|
|
config-prod.rb
|
|
config-prod.toml
|
|
config-prod.txt
|
|
config-prod.xml
|
|
config-prod.yaml
|
|
config-prod.yml
|
|
config-sample.asp
|
|
config-sample.ini
|
|
config-sample.json
|
|
config-sample.php
|
|
config-sample.pl
|
|
config-sample.py
|
|
config-sample.rb
|
|
config-sample.toml
|
|
config-sample.txt
|
|
config-sample.xml
|
|
config-sample.yaml
|
|
config-sample.yml
|
|
config-test.asp
|
|
config-test.ini
|
|
config-test.json
|
|
config-test.php
|
|
config-test.pl
|
|
config-test.py
|
|
config-test.rb
|
|
config-test.toml
|
|
config-test.txt
|
|
config-test.xml
|
|
config-test.yaml
|
|
config-test.yml
|
|
config.asp
|
|
config.dev.asp
|
|
config.dev.ini
|
|
config.dev.json
|
|
config.dev.php
|
|
config.dev.pl
|
|
config.dev.py
|
|
config.dev.rb
|
|
config.dev.toml
|
|
config.dev.txt
|
|
config.dev.xml
|
|
config.dev.yaml
|
|
config.dev.yml
|
|
config.gz
|
|
config.inc.php
|
|
config.ini
|
|
config.json
|
|
config.php
|
|
config.pl
|
|
config.prod.asp
|
|
config.prod.ini
|
|
config.prod.json
|
|
config.prod.php
|
|
config.prod.pl
|
|
config.prod.py
|
|
config.prod.rb
|
|
config.prod.toml
|
|
config.prod.txt
|
|
config.prod.xml
|
|
config.prod.yaml
|
|
config.prod.yml
|
|
config.py
|
|
config.rb
|
|
config.sample.asp
|
|
config.sample.inc.php
|
|
config.sample.ini
|
|
config.sample.json
|
|
config.sample.php
|
|
config.sample.pl
|
|
config.sample.py
|
|
config.sample.rb
|
|
config.sample.toml
|
|
config.sample.txt
|
|
config.sample.xml
|
|
config.sample.yaml
|
|
config.sample.yml
|
|
config.test.asp
|
|
config.test.ini
|
|
config.test.json
|
|
config.test.php
|
|
config.test.pl
|
|
config.test.py
|
|
config.test.rb
|
|
config.test.toml
|
|
config.test.txt
|
|
config.test.xml
|
|
config.test.yaml
|
|
config.test.yml
|
|
config.toml
|
|
config.txt
|
|
config.xml
|
|
config.yaml
|
|
config.yml
|
|
config_dev.asp
|
|
config_dev.ini
|
|
config_dev.json
|
|
config_dev.php
|
|
config_dev.pl
|
|
config_dev.py
|
|
config_dev.rb
|
|
config_dev.toml
|
|
config_dev.txt
|
|
config_dev.xml
|
|
config_dev.yaml
|
|
config_dev.yml
|
|
config_prod.asp
|
|
config_prod.ini
|
|
config_prod.json
|
|
config_prod.php
|
|
config_prod.pl
|
|
config_prod.py
|
|
config_prod.rb
|
|
config_prod.toml
|
|
config_prod.txt
|
|
config_prod.xml
|
|
config_prod.yaml
|
|
config_prod.yml
|
|
config_sample.asp
|
|
config_sample.ini
|
|
config_sample.json
|
|
config_sample.php
|
|
config_sample.pl
|
|
config_sample.py
|
|
config_sample.rb
|
|
config_sample.toml
|
|
config_sample.txt
|
|
config_sample.xml
|
|
config_sample.yaml
|
|
config_sample.yml
|
|
config_test.asp
|
|
config_test.ini
|
|
config_test.json
|
|
config_test.php
|
|
config_test.pl
|
|
config_test.py
|
|
config_test.rb
|
|
config_test.toml
|
|
config_test.txt
|
|
config_test.xml
|
|
config_test.yaml
|
|
config_test.yml
|
|
coverage.xml
|
|
cpuinfo
|
|
credentials.json
|
|
database.yaml
|
|
database.yml
|
|
debian.cnf
|
|
debug.log
|
|
default.settings.php
|
|
defaults.inc.php
|
|
Desktop.ini
|
|
diskstats
|
|
Dockerfile
|
|
dynamic_debug
|
|
env.php
|
|
execdomains
|
|
filesystems
|
|
fish_variables
|
|
ftp-sync.json
|
|
gitlab.rb
|
|
gitlab_config_
|
|
gruntfile.js
|
|
hplip.conf
|
|
hypervisor
|
|
initial_root_password
|
|
iomem
|
|
ioports
|
|
ipmi
|
|
kallsyms
|
|
kcore
|
|
key-users
|
|
kmsg
|
|
kpagecgroup
|
|
kpagecount
|
|
kpageflags
|
|
latency_stats
|
|
ldap-authentication-report.csv
|
|
loadavg
|
|
local.xml
|
|
mdstat
|
|
meminfo
|
|
mtrr
|
|
my.cnf
|
|
mysql.cnf
|
|
mysqldump.cnf
|
|
notify-osd.log
|
|
npm-debug.log
|
|
npm-shrinkwrap.json
|
|
package-lock.json
|
|
package.json
|
|
packages.json
|
|
pagetypeinfo
|
|
parameters.php
|
|
parameters.yml
|
|
php.ini
|
|
php_error.log
|
|
php_errors.log
|
|
phpcs.xml
|
|
phpcs.xml.dist
|
|
phpinfo.php
|
|
pm2.log
|
|
routing.yml
|
|
sched_debug
|
|
schedstat
|
|
scsi
|
|
secrets.json
|
|
secrets.yaml
|
|
secrets.yml
|
|
security.yml
|
|
sendgrid.env
|
|
services.yml
|
|
settings.inc.php
|
|
settings.local.php
|
|
settings.php
|
|
sftp.json
|
|
slabinfo
|
|
softirqs
|
|
sslvpn_websession
|
|
sysrq-trigger
|
|
system.ini
|
|
sysvipc
|
|
thread-self
|
|
Thumbs.db
|
|
timer_list
|
|
timer_stats
|
|
user_secrets.yml
|
|
version_signature
|
|
vmallocinfo
|
|
vmstat
|
|
Web.config
|
|
weblogic.xml
|
|
webpack.config.js
|
|
win.ini
|
|
wp-config-
|
|
wp-config.
|
|
wp-config_
|
|
yarn-debug.log
|
|
yarn-error.log
|
|
yarn.lock
|
|
zoneinfo
|