Metasploit mailing list archives
Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7?
From: naplanetu at gmail.com (Taras P. Ivashchenko)
Date: Sun, 01 Mar 2009 01:15:11 +0300
natron, in same circumstances listed below (XP and IE6, Vista and IE7) it looks not working :( If bind netcat on needed port and listen then we can see only one HTTP request received from target. On Mon, 2009-02-23 at 09:39 -0600, natron wrote:
Let me know if you run into any bugs with it! Thanks, N 2009/2/23 Taras P. Ivashchenko <naplanetu at gmail.com>:Anthony, thanks a lot!) On Mon, 2009-02-23 at 02:47 +0500, Anthony Sapozhnikov wrote:Taras, may be the following link helps you: http://blog.invisibledenizen.org/2009/02/updating-passivex-handler-to-work-with.html 2009/2/21 Taras P. Ivashchenko <naplanetu at gmail.com> Hello, list! Imho, reverse connect through HTTP proxy is one of most wanted features for client side attacks in penetration tests. Using of corporate proxy looks as standard for example in Russia. I tried to test it with WinXP sp2 and IE6 and proxy and it seems to not working :( Yesterday I also tested it on Windows Vista and IE7 without any proxy (I also switch off antivirus, windows defender and switch down IE's policy) but also it didn't work :( At same time reverse_tcp worked fine (when there is no proxy). -- ????? ???????? (Taras Ivashchenko), OSCP www.securityaudit.ru ---- "Software is like sex: it's better when it's free." - Linus Torvalds _______________________________________________ http://spool.metasploit.com/mailman/listinfo/framework -- mailto: Anton.Sapozhnikov at gmail.com _______________________________________________ http://spool.metasploit.com/mailman/listinfo/framework-- ????? ???????? (Taras Ivashchenko), OSCP www.securityaudit.ru ---- "Software is like sex: it's better when it's free." - Linus Torvalds _______________________________________________ http://spool.metasploit.com/mailman/listinfo/framework
-- ????? ???????? (Taras Ivashchenko), OSCP www.securityaudit.ru ---- "Software is like sex: it's better when it's free." - Linus Torvalds -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 197 bytes Desc: This is a digitally signed message part URL: <http://mail.metasploit.com/pipermail/framework/attachments/20090301/39d7a745/attachment.pgp>
Current thread:
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Taras P. Ivashchenko (Feb 21)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Anthony Sapozhnikov (Feb 22)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Taras P. Ivashchenko (Feb 23)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? natron (Feb 23)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Taras P. Ivashchenko (Feb 28)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? natron (Mar 02)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Taras P. Ivashchenko (Feb 23)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Anthony Sapozhnikov (Feb 22)