Metasploit mailing list archives
Re: Discovery scan through proxies?
From: Jonathan Cran <jcran () 0x0e org>
Date: Tue, 15 May 2012 22:43:34 -0500
Is it possible to set up a discovery scan with some logic built in to use proxies where appropriate? Or alternatively, create separate scans for different networks that use proxy machines to reach inside each remote network?
Sean -- yes, definitely. this is probably something best implemented with some scripting / rpc, or at a lower layer with specific routes / network - are you using pro or the framework? Assuming pro (but the same principles apply for the framework), you could also use an RC file to set the PROXIES: <discover_all.rc> # run first scan without a proxy pro_discover 10.0.0.0/24 set PROXIES socks4:localhost:1080 # run second scan through a pivot pro_discover 10.0.0.0/24 </discover_all.rc> Which you could run with: $ sudo ./msfpro -r discover_all.rc Note you can specify either HTTP or SOCKS proxies: set PROXIES SOCKS4:localhost:1080 set PROXIES HTTP:localhost:8080 Hope it helps! jcran
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- Discovery scan through proxies? Sean Carolan (May 15)
- Re: Discovery scan through proxies? Jonathan Cran (May 15)
- Re: Discovery scan through proxies? Sean Carolan (May 16)
- Re: Discovery scan through proxies? Jonathan Cran (May 15)