Home page logo
/

metasploit logo Metasploit mailing list archives

Re: when introduced delay in exploit?
From: msairam at intoto.com (M.P.Sairam)
Date: Tue, 16 Jan 2007 10:36:49 +0530


Since in some cases the MSF is not waiting for the response once it 
has sent the exploit packets can I wait for few seconds. Since i am 
in testing the IPS my job is the exploit should pass through IPS undetected.

Thanks,
    --
Sairam.

At 06:27 AM 1/14/2007, you wrote:
Sairam,

I think you should be more worried about the exploit blocking 
actions of the IPS more so than the traffic buffering time delay. 
Any traffic buffering time delay from any networking intermediary 
should be minimal and as long as the TCP stream isn't interrupted 
this should have no effect on exploit success.

I answered based on my interpretation of your inquiry, which wasn't 
all that clear so sorry if I misunderstood.


-----Original Message-----
From: "M.P.Sairam" <msairam at intoto.com>
To: framework at metasploit.com
Date: Thu, 11 Jan 2007 11:51:42 +0530
Subject: [framework] when introduced delay in exploit?


I am a new to this exploiting and i am working on framework 2.7, if I
introduce any delay in exploit script at the position after the
exploit pattern is sent, how does it effect the exploit can any one
please explain. I am Using backupexec_agent exploit as an example. If
IPS is used then there will be some small delay in transmission of
packets then if IPS buffers the packets which contain the URL's then
exploit is not succeeding even though the IPS is not detecting the
exploit, how can I overcome such cases?

Thanks ,
   ----
Sairam








  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]