/opt/metasploit-framework/embedded/bin/ruby --version
ruby 2.4.1p111 (2017-03-22 revision 58053) [x86_64-linux]
ruby --version
ruby 2.6.0dev (2018-04-19 trunk 63191) [x86_64-linux]
用 WebDav 的那个 buffer ovf
第一次看起来好像正常,但最后没会话
后来告诉我 WebDav 响应不正常
第一次看起来好像正常,但最后没会话
后来告诉我 WebDav 响应不正常
RHOST = www.mcteam.infoRPORT = 333Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <https://" in a PROPFIND request, as exploited in the wild in July or August 2016. Original exploit by Zhiniang Peng and Chen Wu.Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <https://" in a PROPFIND request, as exploited in the wild in July or August 2016. Original exploit by Zhiniang Peng and Chen Wu.charity100.org (🌶🐔)
21: FTP Pure-FTPd
25: SMTP?
53: domain ISC BIND 9.8.2rc1 (RHEL 6)
80: http Apache (WordPress 4.8.6) (robots.txt)
110: pop3 Dovecot pop3d
143: imap Dovecot imapd
443: ssl Apache (robots.txt) (cPanel)
voukgroup.org server.voukgroup.org
DNS:charity100.org, DNS:charity100.voukgroup.org, DNS:cpanel.charity100.org, DNS:mail.charity100.org, DNS:webdisk.charity100.org, DNS:webmail.charity100.org, DNS:www.charity100.org, DNS:www.charity100.voukgroup.org
465:ssl/smtp Exim smtpd 4.89_1
587: ^
993: Dovecot imapd
995: Dovecot pop3d
3306: mysql
Linux 2.6 RHEL6
21: FTP Pure-FTPd
25: SMTP?
53: domain ISC BIND 9.8.2rc1 (RHEL 6)
80: http Apache (WordPress 4.8.6) (robots.txt)
110: pop3 Dovecot pop3d
143: imap Dovecot imapd
443: ssl Apache (robots.txt) (cPanel)
voukgroup.org server.voukgroup.org
DNS:charity100.org, DNS:charity100.voukgroup.org, DNS:cpanel.charity100.org, DNS:mail.charity100.org, DNS:webdisk.charity100.org, DNS:webmail.charity100.org, DNS:www.charity100.org, DNS:www.charity100.voukgroup.org
465:ssl/smtp Exim smtpd 4.89_1
587: ^
993: Dovecot imapd
995: Dovecot pop3d
3306: mysql
Linux 2.6 RHEL6
duangsues.is_a? SaltedFish
有趣: https://voukgroup.org/ ... https://www.masterlo.com/
whois voukgroup.org
可以看到有用的信息
这域名是在 Godaddy.com
是他们的人注册的
可以看到有用的信息
这域名是在 Godaddy.com
2015-09-11T08:18:55Z 注册的Registrant Name: MBI Holding
Registrant Organization:
Registrant Street: No.2 Avenue 1
Registrant Street: Avenue Ampang
Registrant City: Ampang
Registrant State/Province: Selangor
Registrant Postal Code: 68000
Registrant Country: MY
Registrant Phone: +60.342804833
Registrant Email: [email protected]
Registry Admin ID: C166257889-LROR
Admin Name: MBI Holding
Admin Organization:
Admin Street: No.2 Avenue 1
Admin Street: Avenue Ampang
Admin City: Ampang
Admin State/Province: Selangor
Admin Postal Code: 68000
Admin Country: MY
Admin Phone: +60.342804833
是他们的人注册的