Http/open proxy

De www.metasploit-es.com.ar

El modulo "open_proxy" escanea un host o rango de hosts buscando servidores proxy abiertos. Este modulo ayuda a mitigar falsos positivos, permitiendonos declarar codigos HTTP validos para determinar cuando una conexion ha sido realizada con exito. 

msf > use auxiliary/scanner/http/open_proxy
msf auxiliary(open_proxy) > show options

Module options:

   Name                   Current Setting                                     Required  Description
   ----                   ---------------                                     --------  -----------
   DEBUG                  false                                               no        Enable requests debugging output
   LOOKUP_PUBLIC_ADDRESS  false                                               no        Enable test for retrieve public IP address via RIPE.net
   MULTIPORTS             false                                               no        Multiple ports will be used : 80, 1080, 3128, 8080, 8123
   RANDOMIZE_PORTS        false                                               no        Randomize the order the ports are probed
   RHOSTS                                                                     yes       The target address range or CIDR identifier
   RPORT                  8080                                                yes       The target port
   SITE                   209.85.135.147                                      yes       The web site to test via alleged web proxy (default is www.google.com)
   THREADS                1                                                   yes       The number of concurrent threads
   UserAgent              Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)  yes       The HTTP User-Agent sent in the request
   VERIFY_CONNECT         false                                               no        Enable test for CONNECT method
   VERIFY_HEAD            false                                               no        Enable test for HEAD method
   ValidCode              200,302                                             no        Valid HTTP code for a successfully request
   ValidPattern           server: gws                                         no        Valid HTTP server header for a successfully request

Definimos el valor de RHOSTS a un pequeño rango de direcciones IP y el puerto de escaneo a 8888 o servidores proxy. 

msf auxiliary(open_proxy) > set RHOSTS 192.168.1.200-210
RHOSTS => 192.168.1.200-210
msf auxiliary(open_proxy) > set RPORT 8888
RPORT => 8888
msf auxiliary(open_proxy) > set THREADS 11
THREADS => 11
msf auxiliary(open_proxy) > run

[*] 192.168.1.201:8888 is a potentially OPEN proxy [200] (n/a)
[*] Scanned 02 of 11 hosts (018% complete)
[*] Scanned 03 of 11 hosts (027% complete)
[*] Scanned 04 of 11 hosts (036% complete)
[*] Scanned 05 of 11 hosts (045% complete)
[*] Scanned 11 of 11 hosts (100% complete)
[*] Auxiliary module execution completed
msf auxiliary(open_proxy) >



© Offensive Security 2009 

Original de www.offensive-security.com
Traducido por cbk999
Obtenido de «http://www.metasploit-es.com.ar/wiki/index.php/Http/open_proxy»
Herramientas personales