Penetration Testing mailing list archives
Frameworks to exploit AV gw and Browser?
From: "Richard Miles" <richard.k.miles () googlemail com>
Date: Wed, 31 Dec 2008 16:22:41 -0300
Hi A long time ago I remember I saw 2 nice projects, however (yes, I'm dumb as hell) I never had put it into my bookmark. One of this projects was a framework for client side "browser" attacks. Where they had implemented a common evil web page which detects technology the client use (java, flash, etc) and the browser itself (IE, FF) and try different vectors of exploits which match. Someone know this project? Or someone related? off: please no metasploit stuff, since I already know about it. The other, is something similar, but to test AntiVirus gateways, it was a framework contain dozen of different evil payloads for different antivirus. So we could test if we could compromise a AV gateway. Anyone aware of the link of the project? Thanks and happy new year
Current thread:
- Frameworks to exploit AV gw and Browser? Richard Miles (Dec 31)