Feature #315
Exploit fragmentation for IPS evasion
| Status: | Rejected | Start date: | ||
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | HD Moore | % Done: | 0% |
|
| Category: | general | |||
| Target version: | Open Backlog | |||
| Resolution: | How To Use: | |||
| Release Note: |
Description
Create an option in the "show options", to attempt to fire the exploit using a miriad of automatically cycling fragmentation options until the exploit successfully bypasses/evades the IPS (and is successful) or all fragmentation variations have been exahauted. A little like the concept of autopwn, but using one exploit against one target which cycles through all the variations of fragmentation options ala fragrouter or some similar evasion engine.
History
Updated by HD Moore over 2 years ago
We looked at making something like this, but the trouble was most systems would blacklist the offending IP, making it a pain to test all methods without a huge set of source addresses.
Updated by HD Moore over 2 years ago
- Target version changed from Metasploit 3.3 to Metasploit 3.4.0
Updated by James Lee over 1 year ago
- Target version changed from Metasploit 3.4.0 to Metasploit 3.4.1
Updated by James Lee over 1 year ago
- Target version changed from Metasploit 3.4.1 to Open Backlog
Updated by HD Moore over 1 year ago
- Status changed from New to Rejected
Not in scope, closing this out.