Re: Web autopwn

[Tasos Laskos <tasos.laskos () gmail com>]

See: 
http://github.com/Zapotek/arachni/tree/experimental/external/metasploit/

It's mostly working as you can see but the payload breaks in some exotic 
cases, still working on it.

On 27/10/10 09:13, YGN Ethical Hacker Group wrote:
> So, what kind of plugin?
>
>
>
>
> On Thu, Oct 21, 2010 at 2:12 PM, Tasos Laskos <tasos.laskos () gmail com 
> <mailto:tasos.laskos () gmail com>> wrote:
>
>      Yeah I figured. I've started working on a plug-in to do what I want.
>     Not in an abstract framework-wide manner but for a single imported
>     report.
>
>     Cheers,
>     Tasos L.
>
>
>     On 21/10/10 07:07, HD Moore wrote:
>
>         On 10/19/2010 9:44 PM, Tasos Laskos wrote:
>
>              Hi guys,
>
>             There's a feature like autopwn for webapps in the Pro
>             version.
>             Does something like that exist in the framework?
>
>             I just finished writing an importer for a report and if
>             the MSF can't do
>             it then I took a very wrong approach.
>
>
>         I know we talked about this off-list; but some general
>         information for
>         anyone interested. As of 3.5.0 we implemented a new set of
>         database
>         tables for tracking web applications and their
>         vulnerabilities. This
>         allows us to import data from web scanners today, but until we
>         finish
>         overhauling the WMAP modules and the commands to do
>         automation, its not
>         possible to do much with them yet.
>
>         -HD
>         _______________________________________________
>         https://mail.metasploit.com/mailman/listinfo/framework
>
>
>     _______________________________________________
>     https://mail.metasploit.com/mailman/listinfo/framework

_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework