Feature #411
Add netcat-like advanced features to CONNECT
| Status: | New | Start date: | 10/23/2009 | |
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | Kris Katterjohn | % Done: | 0% |
|
| Category: | - | |||
| Target version: | Open Backlog | |||
| Resolution: | How To Use: | |||
| Release Note: |
Description
In reference to Bug #396 connect already has the ability to connect through a session, it would be nice to expand this so that other tools can use that connection. Such as medusa/hydra/ncrack or simply just ssh. Here are the features I think would be nice to have
1. Backgrounding opened connects
2. Dynamic connection handling
3. Binding for other tool use
4. Daemonizing for multiple connections (wouldn't be much fun having to issue the connect command each time medusa wanted to try a password)
History
Updated by HD Moore about 2 years ago
- Assignee set to Kris Katterjohn
Updated by Kris Katterjohn about 2 years ago
These sound interesting.
Rob Fuller wrote:
2. Dynamic connection handling
3. Binding for other tool use
4. Daemonizing for multiple connections (wouldn't be much fun having to issue the connect command each time medusa wanted to try a password)
Do you mind elaborating on these though?
For example: any precise requests (implementation or otherwise)? Any interface ideas?
Just whatever is on your mind regarding these.
Updated by Rob Fuller about 2 years ago
- (blank)
- Dynamic connection handling
- What would be ideal here is Metasploit actually setting up a fake (or VPN-like) interface that you would route your connections through so it would show up exiting on the distant end's (compromised host) interface (which I can understand won't happen due to compat issues). But I guess the next best thing would be a SOCKS proxy deal like 'ssh -d' does.
- Binding for other tool use
- Sort of like the above, except it would be like netcat port-forwarding Attacker -> Compromised Host A -> Host B. This would be useful for things that can't use SOCKS proxies, and for a more targeted approach.
- Daemonizing for multiple connections (wouldn't be much fun having to issue the connect command each time medusa wanted to try a password)
- Essentially this feature just keeps anything from closing the connection except for the attacker. Sort of like the mystical netcat -L flag.
- Upgrade to meterpreter
- Just wanted to add this one, and yes I know it's beating a dead horse
Updated by James Lee over 1 year ago
- Target version changed from Metasploit 3.4.0 to Metasploit 3.4.1
Updated by James Lee over 1 year ago
- Target version changed from Metasploit 3.4.1 to Open Backlog
I doubt connect is really the best place to do all of this. Regardless, it won't make it into 3.4.1.