Re: Discovery scan through proxies?

[Jonathan Cran <jcran () 0x0e org>]

> Is it possible to set up a discovery scan with some logic built in to
> use proxies where appropriate?  Or alternatively, create separate
> scans for different networks that use proxy machines to reach inside
> each remote network?
Sean -- yes, definitely. this is probably something best implemented with
some scripting / rpc, or at a lower layer with specific routes / network -
are you using pro or the framework? Assuming pro (but the same principles
apply for the framework), you could also use an RC file to set the PROXIES:

<discover_all.rc>
# run first scan without a proxy
pro_discover 10.0.0.0/24
set PROXIES socks4:localhost:1080
# run second scan through a pivot
pro_discover 10.0.0.0/24
</discover_all.rc>

Which you could run with:
$ sudo ./msfpro -r discover_all.rc

Note you can specify either HTTP or SOCKS proxies:
set PROXIES SOCKS4:localhost:1080
set PROXIES HTTP:localhost:8080

Hope it helps!

jcran

_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework