Exploitation Framework Help
From SecurityForest
| Table of contents |
FAQ
- Q: The exploittree contains over 2000 exploits, but i only see about 20 in the exploitation framework, why?
- A: The exploitation framework can leverage the exploittree's exploits, but the basic syntax has to be manually added only once by one person in the community (see Adding an Exploit below). If each person who downloaded the exploitation framework would add one exploit, then ALL exploits would have been available to the whole community along time ago...
Using an Exploit
- Select your exploit from the Exploit List.
- Specify all required parameters (see description of the exploit for more details).
- Click the "Exploit" button.
- Enjoy...
Adding an Exploit
You add exploits in the Add Exploit page of the SecurityForest Exploitation Framework.
VERY IMPORTANT: Do not use semi-colon's ":" or comma's "," anywhere when adding an exploit (it will create problems).
When adding an exploit, the following fields must be filled in:
- Branch - Choose the appropriate branch.
- Icon - Choose the appropriate icon.
- Short Description - Syntax is [OS][Attack_Vector][ID_if_exists][Type_of_attack] (eg. Microsoft IIS SSL PCT MS04-011 Overflow)
- Exploit Name - The name of the exploit must be the same as the authors sourcecode and must be compiled and tested BY YOU!! (eg. THCIISSLame.exe)
- Path - The full path to the exploit (eg. application\webserver\iis\THCIISSLame.exe)
- Params - The parameters the exploit expects to recieve (eg. 4,RHOST,RPORT!443,LHOST,LPORT) (See below for more details).
- Description - A description of the exploit, usually the author provides this in the usage or sourcecode. This field must give credit to the author of the exploit.
Parameter Explanations
RHOST - Remote Host (The Target or Victim) RPORT - Remote Port (Normally the port you want to attack) LHOST - Local Host (The IP Address of your machine) LPORT - Local Port (Normally the port you want the reverse shell to connect to)
Parameter Syntax
When adding parameters, use the following syntax:
Simple [amount_of_paramnames],[paramname],[paramname],[paramname],[paramname] eg. 4,RHOST,RPORT,LHOST,LPORT Advanced [amount_of_paramnames],[paramname]![paramvalue]![parameg],[paramname]![paramvalue]![parameg] ... eg. An exploit expects 3 parameters: * Target IP (must be FQDN) * Local IP * Local Port (syntax needs -p) 3,RHOST!! (eg. www.victim.com),LHOST!!,LPORT!-p 12345! Descriptions [amount_of_paramnames] - The amount of parameters the exploit expects. [paramname] - The name such as RHOST (Remote Host), LPORT (local Port), etc. [paramvalue] - Parameter initial value to add a value to the parameter (suggested to be used when special syntax is needed. [parameg] - A parameter example should be added when needed (eg. when RHOST must be a FQDN - (eg. www.victim.com) ).
Your Additions
Send your additions to loni@securityforest.com (mailto:loni@securityforest.com) and get credit.
Please include the following:
- The exploit sourcecode (and comments on how to compile if it is not straight forward).
- The file exploits_db.txt which should contain your addition (you will find this file in the root of your ExploitTree directory).
