Metasploit mailing list archives
Re: Help with fragmentation
From: jotapwn <jotapwn () gmail com>
Date: Sat, 12 Mar 2011 14:14:37 +0100
I found frag options in MSF: set DCERPC::max_frag_size set TCP::max_send_size I needed for a PoC and worked fine. With fragroute from a BT vmware image, I could even establish good connections even opening a simple web session. Web server always sent RST packets. I tried a simple config file with ip_frag 256 and other with tcp_frag 256. Thanks and regards. El 08/03/2011, a las 17:11, Jose Selvi escribió:
No overlapping? Fragroute should work. Did you tried it with usual connection (no exploit) to the server you're exploiting? If this doesn't work maybe you're not using fragroute as you should. Why don't you mail us the fragroute config file and the uname of your system? What is your target OS? Regards. El 07/03/11 20:42, jotapwn escribió:Hello guys, Can anybody advise me about how to use Metasploit with IP fragmentation and TCP segmentation? I tried fragroute, but it doesn't work. It fragments, but the exploit does not finish. Thanks in advance.-- Jose Selvi. Security Technical Consultant CISA, CISSP, CNAP, GCIH, GPEN http://www.pentester.es SANS Mentor in Madrid (Spain). September 23 - November 25 SEC560: Network Penetration Testing and Ethical Hacking http://www.sans.org/mentor/details.php?nid=24133 http://www.pentester.es/2010/12/nuevo-grupo-y-descuento-para-network.html _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- Help with fragmentation jotapwn (Mar 07)
- Re: Help with fragmentation Jose Selvi (Mar 08)
- Re: Help with fragmentation jotapwn (Mar 12)
- Re: Help with fragmentation Jose Selvi (Mar 08)