Home page logo

nmap-dev logo Nmap Development mailing list archives

pcanywhere-brute request for comments
From: Aleksandar Nikolic <nikolic.alek () gmail com>
Date: Sat, 16 Jun 2012 01:34:22 +0200

Hi all,

here is a new script of mine. It uses brute library to perform
bruteforce attack against a pcAnywhere server.

There are few problems when bruteforcing pcAnywhere so the script is a
bit slow.
First of all, the server accepts only one connection at a time
so the script it limited to a single thread at a time.
Second, it requires a relatively big timeout between tries.

And third, but most annoying, after it guesses a valid username/password
pair , the server is locked for quite some time, so the script retries
the connection
until the server is available again and it can continue.
Now, to resolve this last issue, there are two options:
1) The script quits after it finds one valid login
2) The script loops in a sort of busy wait until the server becomes
available again.

In it's current state, the script implements the second option.

Any thoughts on this ?


Attachment: pcanywhere-brute.nse

Sent through the nmap-dev mailing list
Archived at http://seclists.org/nmap-dev/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]