[framework] Stunning work by HDM and friends.
H D Moore
hdm at metasploit.com
Fri Sep 14 08:49:05 CDT 2007
Its been on the todo list for a few weeks, I just haven't gotten together
the time and notes to explain it. The basic idea:
-- outside of metasploit --
Run nmbd saying your netbios name is WPAD
Run a web server hosting a wpad.dat, saying that all connections should go
through your IP as a proxy server.
-- inside metasploit --
Run the socks proxy server found in auxiliary/server/socks_unc
Run the smb_relay exploit found in exploits/windows/smb/
-HD
On Friday 14 September 2007 06:15, Mr Gabriel wrote:
> Okay, enough with the awe and adimiration, what I really want to know
> is, is there a write up of the demo exploit that you performed towards
> the end of the talk? It would be such a brilliant demo for me to show a
> few of my clients who have their head up their ass!
More information about the framework
mailing list