In the last recipe, we used an HTTP fuzzer that sent a series of HTTP GET
requests with incrementing URL lengths until the service crashed. Now, we will learn how it worked and build our own small HTTP fuzzer that can be used against Disk Sorter Enterprise.
- The basic template to build a fuzzer will be similar to the one we discussed for the development of an auxiliary module, which should look as follows:
class MetasploitModule < Msf::Auxiliary include Msf::Exploit::Remote::Tcp include Msf::Auxiliary::Fuzzer def initialize(info = {}) super(update_info(info, 'Name' => 'HTTP Fuzzer', 'Description' => %q{Simple HTTP GET Request Fuzzer}, 'Author' => [ 'Daniel Teixeira' ], 'License' => MSF_LICENSE )) register_options([ Opt::RPORT(80), OptInt.new("MAXLENGTH", [true, "Maximum string length", 20000] ) ]) end
- Now that we have imported the MSF libraries, created a class, and defined the...