Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Small changes to the brute_dirs aux module #12475

Merged
merged 1 commit into from
Nov 25, 2019
Merged

Small changes to the brute_dirs aux module #12475

merged 1 commit into from
Nov 25, 2019

Conversation

mcantoni
Copy link
Contributor

This PR includes the following changes:

  • Add timeout, delay and jitter options;
  • Cosmetic tweaks to a few modules;

I haven't been able to reproduce #12334 with 5.0.55-dev-46e3e0c

Note: having also the "dir_scanner" aux module... "brute_dirs" could be renamed in "dir_brute".

@dwelch-r7
Copy link
Contributor

dwelch-r7 commented Nov 7, 2019
edited
Loading 

[+] Found http://127.0.0.1:8000/go/ 200
[-] Auxiliary failed: NoMethodError undefined method `report_web_vuln' for #<Metasploit::Framework::DataService::RemoteHTTPDataService:0x00007facb0c6a840>
Did you mean?  report_vuln
               report_web_site
[-] Call stack:
[-]   /rapid7/metasploit-framework/lib/metasploit/framework/data_service/proxy/core.rb:136:in `method_missing'
[-]   /rapid7/metasploit-framework/lib/msf/core/auxiliary/report.rb:363:in `report_web_vuln'
[-]   /rapid7/metasploit-framework/modules/auxiliary/scanner/http/brute_dirs.rb:182:in `block (3 levels) in run_host'
[-]   /rapid7/metasploit-framework/modules/auxiliary/scanner/http/brute_dirs.rb:152:in `each'
[-]   /rapid7/metasploit-framework/modules/auxiliary/scanner/http/brute_dirs.rb:152:in `block (2 levels) in run_host'
[-]   /rapid7/metasploit-framework/modules/auxiliary/scanner/http/brute_dirs.rb:126:in `each'
[-]   /rapid7/metasploit-framework/modules/auxiliary/scanner/http/brute_dirs.rb:126:in `block in run_host'
[-]   /rapid7/metasploit-framework/modules/auxiliary/scanner/http/brute_dirs.rb:81:in `each'
[-]   /rapid7/metasploit-framework/modules/auxiliary/scanner/http/brute_dirs.rb:81:in `run_host'
[-]   /rapid7/metasploit-framework/lib/msf/core/auxiliary/scanner.rb:111:in `block (2 levels) in run'
[-]   /rapid7/metasploit-framework/lib/msf/core/thread_manager.rb:106:in `block in spawn'
[*] Auxiliary module execution completed

#12334 is an issue for me with this PR

msf5 auxiliary(scanner/http/brute_dirs) > version
Framework: 5.0.55-dev-4d7f29993a
Console  : 5.0.55-dev-4d7f29993a

@dwelch-r7
Copy link
Contributor

@mcantoni did you have a db connecting when doing your testing? thinking that may be why the issue didn't appear for you

@dwelch-r7 dwelch-r7 self-assigned this Nov 7, 2019
dwelch-r7 added a commit that referenced this pull request Nov 25, 2019
@dwelch-r7
Land #12475, enhancements to brute_dirs module
a8847a1
@dwelch-r7 dwelch-r7 merged commit 4d7f299 into rapid7:master Nov 25, 2019
@dwelch-r7
Copy link
Contributor

dwelch-r7 commented Nov 25, 2019
edited by tdoan-r7
Loading

Release notes

Options for delay and jitter have been added to the brute_dirs module.

msjenkins-r7 pushed a commit that referenced this pull request Nov 25, 2019
@dwelch-r7 @msjenkins-r7
Land #12475, enhancements to brute_dirs module
5e1632a
@tdoan-r7 tdoan-r7 added the rn-enhancement release notes enhancement label Dec 11, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@dwelch-r7 dwelch-r7

Labels
enhancement rn-enhancement release notes enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@mcantoni @dwelch-r7 @tdoan-r7 @bwatters-r7