[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Metasploit - Hack ?

To: "H D Moore" <fdlist@xxxxxxxxxxxxxxxxxx>, full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Metasploit - Hack ?
From: n3td3v <xploitable@xxxxxxxxx>
Date: Wed, 4 Jun 2008 17:31:51 +0100

On Mon, Jun 2, 2008 at 6:57 PM, H D Moore <fdlist@xxxxxxxxxxxxxxxxxx> wrote:
> Looks like someone is doing ARP poisoning at the ISP level. The actual
> metasploit.com server(s) are untouched, but someone is still managing to
> MITM a large portion of the incoming traffic. To make things even more
> fun, its cooinciding with a DoS attack (syn floods) on most of the open
> services.
>
> If you are worried about the the Metasploit Framework source code being
> MITM'd during SVN checkouts, use the SSL version of the SVN tree:
>
> $ svn co https://metasploit.com/svn/framework3/trunk/
>
> -HD
>
>
> On Monday 02 June 2008, Jacques Erasmus wrote:
>> Seems like the metasploit site has been hacked.
>
>

I found this post [1] on my news group it sounds like an awful
coincidence though.

[1] http://groups.google.com/group/n3td3v/browse_thread/thread/41b832968eacf1d9

All the best,

n3td3v

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Metasploit - Hack ?
  - From: T Biehn

References:
- Re: [Full-disclosure] Metasploit - Hack ?
  - From: H D Moore

Prev by Date: [Full-disclosure] iDefense Security Advisory 06.03.08: Sun Java System Active Server Pages Authorization Bypass Vulnerability
Next by Date: Re: [Full-disclosure] Fwd: Comments on: Phoenix Mars Lander site hacked
Previous by thread: Re: [Full-disclosure] Metasploit - Hack ?
Next by thread: Re: [Full-disclosure] Metasploit - Hack ?
Index(es):
- Date
- Thread