Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

pcanywhere-brute request for comments

From: Aleksandar Nikolic <nikolic.alek () gmail com>
Date: Sat, 16 Jun 2012 01:34:22 +0200
Hi all,

here is a new script of mine. It uses brute library to perform
bruteforce attack against a pcAnywhere server.

There are few problems when bruteforcing pcAnywhere so the script is a
bit slow.
First of all, the server accepts only one connection at a time
so the script it limited to a single thread at a time.
Second, it requires a relatively big timeout between tries.

And third, but most annoying, after it guesses a valid username/password
pair , the server is locked for quite some time, so the script retries
the connection
until the server is available again and it can continue.
Now, to resolve this last issue, there are two options:
1) The script quits after it finds one valid login
or
2) The script loops in a sort of busy wait until the server becomes
available again.

In it's current state, the script implements the second option.

Any thoughts on this ?


Aleksandar

Attachment: pcanywhere-brute.nse
Description: 

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: