CAUTION!!!

This bat is Beta, to be used for lab testing only!

This prog will trigger IDS sensors, although the payload is harmless (well, mostly)

This is to be used for testing purposes only.

In order to maximize the speed of the wget uri request, I did not use all IIS exploits
(some of them hang a bit with wget). However, most of them current as of 7-2002 are being
used.

When wget issues the uri string querry it will grab the file if it exists, so there
may be some files pulled back to your system if they exist.


----------
Directions
----------

Copy wget.exe and httpattack.bat into the same directory. Fire httpattack against
the webserver (with Snort sensor~or-any-other-sensor~ monitoring the traffic) you wish to test.

Usage:

httpattack.bat <ip_address_of_web_server>

e.g. c:\httpattack 10.0.0.1

Note: if you wish to stress test your IDS, simply call or start multiple bat's, from multiple boxes.
Recommend using the /B switch if you use start. Also, I thnk you could specify a string of urls to feed
into one wget request if you did not want to call multiple fires.

Scot Wiedenfeld
scotw () hotmail com