Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Metasploit - Hack ?
From: n3td3v <xploitable () gmail com>
Date: Wed, 4 Jun 2008 17:31:51 +0100

On Mon, Jun 2, 2008 at 6:57 PM, H D Moore <fdlist () digitaloffense net> wrote:
Looks like someone is doing ARP poisoning at the ISP level. The actual
metasploit.com server(s) are untouched, but someone is still managing to
MITM a large portion of the incoming traffic. To make things even more
fun, its cooinciding with a DoS attack (syn floods) on most of the open

If you are worried about the the Metasploit Framework source code being
MITM'd during SVN checkouts, use the SSL version of the SVN tree:

$ svn co https://metasploit.com/svn/framework3/trunk/


On Monday 02 June 2008, Jacques Erasmus wrote:
Seems like the metasploit site has been hacked.

I found this post [1] on my news group it sounds like an awful
coincidence though.

[1] http://groups.google.com/group/n3td3v/browse_thread/thread/41b832968eacf1d9

All the best,


Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]