Full Disclosure: Re: Metasploit

Re: Metasploit - Hack ?

From: n3td3v <xploitable () gmail com>
Date: Wed, 4 Jun 2008 17:31:51 +0100

On Mon, Jun 2, 2008 at 6:57 PM, H D Moore <fdlist () digitaloffense net> wrote:

Looks like someone is doing ARP poisoning at the ISP level. The actual
metasploit.com server(s) are untouched, but someone is still managing to
MITM a large portion of the incoming traffic. To make things even more
fun, its cooinciding with a DoS attack (syn floods) on most of the open
services.

If you are worried about the the Metasploit Framework source code being
MITM'd during SVN checkouts, use the SSL version of the SVN tree:

$ svn co https://metasploit.com/svn/framework3/trunk/

-HD


On Monday 02 June 2008, Jacques Erasmus wrote:

Seems like the metasploit site has been hacked.


I found this post [1] on my news group it sounds like an awful
coincidence though.

[1] http://groups.google.com/group/n3td3v/browse_thread/thread/41b832968eacf1d9

All the best,

n3td3v

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Metasploit - Hack ? Jacques Erasmus (Jun 02)
- Re: Metasploit - Hack ? H D Moore (Jun 02)
  - Re: Metasploit - Hack ? H D Moore (Jun 02)
  - Re: Metasploit - Hack ? n3td3v (Jun 04)
    - Re: Metasploit - Hack ? T Biehn (Jun 05)
    - Re: Metasploit - Hack ? Ureleet (Jun 11)
    - Re: Metasploit - Hack ? T Biehn (Jun 12)
- Re: Metasploit - Hack ? Paul Schmehl (Jun 02)