Metasploit mailing list archives

Re: nessus scanning through a metasploit tunnel

From: Robin Wood <robin () digininja org>
Date: Fri, 22 Oct 2010 00:03:40 +0100

On 21 October 2010 22:27, Oliver Kleinecke <okleinecke () web de> wrote:

Alternatively (if the host is a win32-machine) you could use
win32-sshserver meterpreter-script, run an ssh-server on the victim =>
reverse forward port 22 and then connect with "ssh -D 127.0.0.1:3128" to
the forwarded port on your machine .. you will have a socks5 server
available tunneled to port 3128 on your host.. you can use that with
proxychains and nesses then.

As I said in the original message, I'm trying to avoid installing an ssh
server on the victim machine. Doing it this way keeps it clean and avoids
any messy tidy up afterwards.

Robin

Perhaps this may help also ..
Regards, Oliver


 ------------------------------
*Von:* "Vlatko Kosturjak" <kost () linux hr>
*Gesendet:* 21.10.2010 18:44:20
*An:* "HD Moore" <hdm () metasploit com>, framework () spool metasploit com
*Betreff:* Re: [framework] nessus scanning through a metasploit tunnel


alternative would be to reduce number of parallel tests and/or parallel
hosts in Nessus.

Hope it helps,

Sent from my mobile device.

-----Original Message-----
From: HD Moore <hdm () metasploit com>
To: framework () spool metasploit com
Sent: Thu, 21 Oct 2010 05:39 PM
Subject: Re: [framework] nessus scanning through a metasploit tunnel

On 10/21/2010 4:58 AM, Robin Wood wrote:

It seems like the socks4a module is getting overloaded and locking up
with the amount of traffic that Nessus is trying to send through it.
Does that sound likely?


Might be - make sure you are using Ruby 1.9.1 or 1.9.2, as it handles
internal threading much better.

-HD
_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework



Neu: WEB.DE De-Mail - Einfach wie E-Mail, sicher wie ein Brief!
Jetzt De-Mail-Adresse reservieren: https://produkte.web.de/go/demail02

_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework

_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework

Current thread:

Re: nessus scanning through a metasploit tunnel, (continued)
- - Re: nessus scanning through a metasploit tunnel Zate Berg (Oct 19)
    - Re: nessus scanning through a metasploit tunnel Robin Wood (Oct 19)
    - Re: nessus scanning through a metasploit tunnel egypt (Oct 19)
    - Re: nessus scanning through a metasploit tunnel Terrence (Oct 19)
    - Re: nessus scanning through a metasploit tunnel HD Moore (Oct 19)
    - Re: nessus scanning through a metasploit tunnel Robin Wood (Oct 21)
    - Re: nessus scanning through a metasploit tunnel HD Moore (Oct 21)
- Re: nessus scanning through a metasploit tunnel Robin Wood (Oct 24)
- Re: nessus scanning through a metasploit tunnel Vlatko Kosturjak (Oct 21)
  - Re: nessus scanning through a metasploit tunnel Oliver Kleinecke (Oct 21)
    - Re: nessus scanning through a metasploit tunnel Robin Wood (Oct 21)