Re: Help with fragmentation

[jotapwn <jotapwn () gmail com>]

I found frag options in MSF:

set DCERPC::max_frag_size
set TCP::max_send_size

I needed for a PoC and worked fine.

With fragroute from a BT vmware image, I could even establish good connections even opening a simple web session. Web 
server always sent RST packets.

I tried a simple config file with ip_frag 256 and other with tcp_frag 256.

Thanks and regards.


El 08/03/2011, a las 17:11, Jose Selvi escribió:

> No overlapping?
> Fragroute should work. Did you tried it with usual connection (no exploit) to the server you're exploiting?
>
> If this doesn't work maybe you're not using fragroute as you should.
> Why don't you mail us the fragroute config file and the uname of your system? What is your target OS?
>
> Regards.
>
> El 07/03/11 20:42, jotapwn escribió:
> > Hello guys,
> >
> > Can anybody advise me about how to use Metasploit with IP fragmentation and TCP segmentation?
> >
> > I tried fragroute, but it doesn't work. It fragments, but the exploit does not finish.
> >
> > Thanks in advance.
>
> -- 
> Jose Selvi.
> Security Technical Consultant
> CISA, CISSP, CNAP, GCIH, GPEN
>
> http://www.pentester.es
>
> SANS Mentor in Madrid (Spain). September 23 - November 25
> SEC560: Network Penetration Testing and Ethical Hacking
> http://www.sans.org/mentor/details.php?nid=24133
> http://www.pentester.es/2010/12/nuevo-grupo-y-descuento-para-network.html
> _______________________________________________
> https://mail.metasploit.com/mailman/listinfo/framework

_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework