Description
This module abuses the SAP NetWeaver EPS_DELETE_FILE function, on the SAP SOAP RFC Service, to delete arbitrary files on the remote file system. The module can also be used to capture SMB hashes by using a fake SMB share as DIRNAME.
Module options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
msf > use auxiliary/dos/sap/sap_soap_rfc_eps_delete_filemsf undefined(sap_soap_rfc_eps_delete_file) > show actions ...actions...msf undefined(sap_soap_rfc_eps_delete_file) > set ACTION < action-name >msf undefined(sap_soap_rfc_eps_delete_file) > show options ...show and set options...msf undefined(sap_soap_rfc_eps_delete_file) > runPrioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub