Exploitation Framework Suggestions

From SecurityForest

Please add in your suggestions/comments below, and we will try implement them in the upcoming versions.
Note: you can use four tildes (~~~~) to create you signature and timestamp.

Suggestions

• Add an "Update ExploitTree Button" , Put a note next to it that ExploitTree must be up-to-date for the latest compiled exploits to work. Sleepless
• Add Netcat option during Add Exploit for LPORT variables where needed. - Morning_Wood
• Add Option to Set ExploitTree Location during install so the user doesn't have to edit settings.txt Sleepless
• Add a Color Scheme option to change the ExploitTree Color Scheme. (Black and gold looks good) - Sleepless (thx Morning_Wood)
• If the exploit uses a different parameter for different OS's, use a dropdown list. Loni 17:55, 22 Mar 2005 (EST)
• Add Update feature in SFEF so with each new update you wouldn't reinstall just get a new update that would overwrite any updated files and leave the settings intact. Sleepless
• Make xsearch non-case-sensitive, so a search for netbios returns results for NetBIOS, for example. Asdf
  • xsearch is the search utility for ExploitTree, not directly connected to the Exploitation Framework. But anyway, you should use xsearch2-beta.pl - it has more functionality and more reliable. A workaround to make the searches case-insentitive, you must change 2 lines of the script (xsearch2-beta.pl). Loni 06:36, 25 Jul 2005 (EDT)

line 40: $xdetails=`grep $searchstr bids.txt`; chomp($xdetails);
to
line 40: $xdetails=`grep -i $searchstr bids.txt`; chomp($xdetails);

and

line 83: system("grep $choicetext bids.txt");
to
line 83: system("grep -i $choicetext bids.txt");