mailing list archives
Re: / modules / exploits / windows / webapp / ?
From: HD Moore <hdm () metasploit com>
Date: Sun, 05 Jun 2011 21:46:41 -0500
On 6/2/2011 9:11 PM, YGN Ethical Hacker Group wrote:
Noticed for a quite sometime that there is no path like / modules /
exploits / windows / webapp /
So for such ASP/ASP.Net web app flaws, should such exploits better put at
/ modules / exploits / windows / http ?
It would be better to just create a webapp directory; the http directory
is for exploits against the web server itself, not the applications,
although this gets muddied a bit with the current modules. Adding the
webapp subdirectory and moving over any relevant modules from http is
the right solution.