Vulnerability Development mailing list archives
Re: Using php to bounce scan
From: m-rae () HOME COM (Matt Rae)
Date: Mon, 30 Apr 2001 15:14:14 -0700
DDOS with php might be something to look at also. If it were even possible to make a somewhat effective DDOS programs with php, it sure would be easier for kidz to rack up the nodes. matt Thiebaut wrote:
Hi, This is my first post so I'm not 100% sure it's the right place to do it and if this is interesting enough to be posted, but still ... The problem : Nowadays few free-web-page hosting companies are providing an access to publish your pages with PHP enabled. That's the problem ;-) So why not use PHP for security purpose ? Let's say you write a PHP network scanner and use it to scan a host. Guess where would the source scan come from. The computer hosting the script, and that is actually not you. Chain proxies between you and the computer hosting the script and you'll appear as the anonymous Php3 network scanning guy. So network scanning is fun (still don't dream about -sS with php), but vulnerability scanning might also be fun. So I though to be a little more complete a simple cgi scanner would also be interesting. It's a very bad example of code optimisation ;-) but I thought the idea was not so bad so... You got both files there : http://persoweb.francenet.fr/~tbilger/linux/ Don't hesitate to mail for comments. Thiebaut Devergranne
Current thread:
- Re: Netaddress and amexmail, (continued)
- Re: Netaddress and amexmail Marc Slemko (Apr 28)
- Re: Netaddress and amexmail Arturo Busleiman (Apr 28)
- Re: Netaddress and amexmail Stone (Apr 27)
- Exploit Ease Level Rory Savage (Apr 25)
- Re: Exploit Ease Level Max Vision (Apr 26)
- Re: Exploit Ease Level Rory Savage (Apr 28)
- Using php to bounce scan Thiebaut (Apr 28)
- Re: Using php to bounce scan Omachonu Ogali (Apr 28)
- Re: Using php to bounce scan Thiebaut (Apr 30)
- corrupted link JklojLrnzn () AOL COM (Apr 30)
- Re: Using php to bounce scan Matt Rae (Apr 30)
- Re: Using php to bounce scan Thiebaut (Apr 30)
- Re: Exploit Ease Level Max Vision (Apr 28)
- Re: Exploit Ease Level jms (Apr 29)
- Re: Exploit Ease Level Rory Savage (Apr 29)
- Re: Exploit Ease Level Mark L. Jackson (Apr 29)
- Re: Exploit Ease Level jms (Apr 29)
- Re: Exploit Ease Level Sebastian (Apr 27)
- Re: Exploit Ease Level Rory Savage (Apr 28)
- Source code to mstream, a DDoS tool Anonymous User (Apr 29)