[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] metasploit vhost_scanner updated

To: full-disclosure <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] metasploit vhost_scanner updated
From: YGN Ethical Hacker Group <lists@xxxxxxxx>
Date: Mon, 20 Dec 2010 12:27:36 +0800

## added support wordlist to load from file
## added more built-in words commonly used in subdomain naming
## added TLD support
## added title/header display


## Background Info
## when dns is not available in controlled environment, vhost gives us
probably exploitable entries and recon points
##  - development host name (test app)
##  - virtual hosts that point/belong to other IPs


Download:
http://yehg.net/lab/pr0js/tools/plugins/metasploit/msf/modules/auxiliary/scanner/http/vhost_scannery.rb

Attachment: vhost_scannery.rb
Description: Binary data

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] MyBB 1.6 <= Cross Site Scripting (XSS) Vulnerability
Next by Date: Re: [Full-disclosure] 10 OpenBSD facts and is timeline of Backdoor
Previous by thread: [Full-disclosure] MyBB 1.6 <= Cross Site Scripting (XSS) Vulnerability
Next by thread: [Full-disclosure] CCBILL critical vulnerability story part II
Index(es):
- Date
- Thread