Sensitive Files

Although some of these are system files, they are included in this web section as they are the standard targets for Arbitrary File Read and LFI exploits.

Apache

Web Server Configuration

/etc/apache2/apache2.conf
/etc/apache2/sites-enabled/000-default.conf
/etc/httpd/conf/httpd.conf
/usr/local/apache2/conf/httpd.conf

Web Server Logs

/var/log/apache2/access.log
/var/log/apache2/error.log
/usr/local/apache2/logs/access_log
/usr/local/apache2/logs/error_log

Nginx

Web Server Configuration

/etc/nginx/nginx.conf
/etc/nginx/sites-enabled/default

Web Server Logs

/var/log/nginx/access.log
/var/log/nginx/error.log

PHP Configuration

/etc/php/7.4/apache2/php.ini
/etc/php/8.0/fpm/php.ini
/usr/local/lib/php.ini
/etc/php.ini

Web Server Logs

Alternative Locations

/var/www/logs/access.log
/var/www/logs/error.log
/opt/lampp/logs/access_log
/opt/lampp/logs/error_log

Web Application Files

Application Configs

/var/www/html/config.php
/var/www/html/.env
/var/www/html/wp-config.php      # WordPress
/var/www/html/configuration.php   # Joomla
/var/www/html/sites/default/settings.php  # Drupal

Framework Configs

/var/www/html/.git/config         # Git configuration
/var/www/html/composer.json       # PHP dependencies
/var/www/html/package.json        # Node.js dependencies

Linux - System Files

Password & User Information

/etc/passwd              # User account information
/etc/shadow              # Encrypted passwords (requires root)
/etc/group               # Group information
/etc/sudoers             # Sudo privileges configuration
/root/.ssh/id_rsa        # SSH private key (root)
/home/user/.ssh/id_rsa   # SSH private key (user)
/home/user/.ssh/authorized_keys  # Authorized SSH keys

Process Information (via /proc)

/proc/self/environ       # Environment variables of current process
/proc/self/cmdline       # Command line arguments
/proc/self/cwd/index.php # Current working directory files
/proc/self/fd/0-10       # File descriptors (can leak source)
/proc/self/status        # Process status information
/proc/version            # Kernel version
/proc/mounts             # Mounted filesystems
/proc/net/tcp            # Active TCP connections
/proc/net/udp            # Active UDP connections
/proc/net/fib_trie       # Network routing information

System Logs

/var/log/auth.log        # Authentication logs
/var/log/syslog          # System logs
/var/log/kern.log        # Kernel logs
/var/log/messages        # General messages
/var/log/mail.log        # Mail server logs

Windows System Files

System Files

C:\Windows\System32\drivers\etc\hosts
C:\Windows\win.ini
C:\Windows\System.ini
C:\Windows\debug\NetSetup.LOG  # Network config detail

IIS Logs

C:\inetpub\logs\LogFiles\W3SVC1\
C:\Windows\System32\LogFiles\W3SVC1\

Application Files

C:\xampp\htdocs\config.php
C:\wamp\www\config.php
C:\inetpub\wwwroot\web.config

SAM Database (Encrypted passwords)

C:\Windows\System32\config\SAM
C:\Windows\System32\config\SYSTEM

User Files

C:\Users\Administrator\Desktop\
C:\Users\{username}\AppData\Local\