Feature #1083

Brute force version of modules/auxiliary/scanner/oracle/xdb_sid.rb and patch for xdb_sid

Added by Thomas Ring almost 2 years ago. Updated about 1 month ago.

Status:Closed Start date:03/11/2010
Priority:Normal Due date:
Assignee:Tod Beardsley % Done:

0%
Category:modules - auxiliary
Target version:Metasploit 4.3.0
Resolution: How To Use:
Release Note:

Description

Basically blended modules/auxiliary/admin/oracle/oracle_login with the aforementioned module to brute force logins (rather than just supplying one at a time).

Added check for res being nil (in which case res.code causes it to bomb).
Added check for res.body.length = 0 and a swap for res.bufq if it is (a bug I noticed in other HTTP modules I've written)
Modified regexp as it was missing things occasionally...

AFAIK, it works well...

[*] Discovered SID: '"<EDIT>"' for host 192.168.103.157:8080 with olapsys / manager
[*] Discovered SID: '"<EDIT>"' for host 192.168.103.157:8080 with wmsys / wmsys

xdb_sid_brute.rb - Suggested new module xdb_sid_brute.rb (2.9 kB) Thomas Ring, 03/11/2010 08:55 am

xdb_sid.rb - Suggested patch for xdb_sid.rb (2.4 kB) Thomas Ring, 03/11/2010 08:55 am

xdb_sid_brute.rb (3.2 kB) Thomas Ring, 03/11/2010 02:24 pm

Associated revisions

Revision 4da2c327
Added by Tod Beardsley 2 months ago

Minor update to xdb_side_brute, see #1083

Adds a typo fix and adds an explicit VERBOSE option.

History

#1
Updated by Thomas Ring almost 2 years ago

Upon further testing found that servers that always return 200 are a problem...added initial check for unpassworded server (which this usually falls under). Changed success output to print_good to distinguish from errors and status.

#2
Updated by HD Moore almost 2 years ago

  • Target version set to 18

#3
Updated by HD Moore almost 2 years ago

  • Target version changed from 18 to Metasploit 3.4.0

#4
Updated by James Lee over 1 year ago

  • Target version changed from Metasploit 3.4.0 to Metasploit 3.5.0

#5
Updated by Tod Beardsley over 1 year ago

  • Assignee set to Tod Beardsley

#6
Updated by Tod Beardsley over 1 year ago

  • Target version changed from Metasploit 3.5.0 to Metasploit 3.5.1

#7
Updated by James Lee about 1 year ago

  • Target version changed from Metasploit 3.5.1 to 54

Feature that didn't make it into 3.5.1; pushing.

#8
Updated by James Lee about 1 year ago

  • Target version changed from 54 to Metasploit 3.6

#9
Updated by HD Moore 4 months ago

  • Target version changed from Metasploit 3.6 to Open Backlog

#10
Updated by Tod Beardsley 4 months ago

  • Category set to modules - auxiliary
  • Status changed from New to HavePatch
  • Target version changed from Open Backlog to Metasploit 4.3.0
  • 10 set to 0

#11
Updated by Tod Beardsley 2 months ago

In comparing the diffs between this year old suggestion and the current state of xdb_sid and xdb_side_brute, it looks like most, if not all, of these changes have been implemented. There are two cosmetic changes, but that looks to be about it.

#13
Updated by Tod Beardsley 2 months ago

  • Status changed from HavePatch to Resolved

#14
Updated by Jonathan Cran about 1 month ago

  • Status changed from Resolved to Closed

Also available in: Atom PDF