module
Metasploit HTTP(S) handler DoS
| Disclosed |
|---|
| Sep 4, 2019 |
Disclosed
Sep 4, 2019
Description
This module exploits the Metasploit HTTP(S) handler by sending
a specially crafted HTTP request that gets added as a resource handler.
Resources (which come from the external connections) are evaluated as RegEx
in the handler server. Specially crafted input can trigger Gentle, Soft and Hard DoS.
Tested against Metasploit 5.0.20.
a specially crafted HTTP request that gets added as a resource handler.
Resources (which come from the external connections) are evaluated as RegEx
in the handler server. Specially crafted input can trigger Gentle, Soft and Hard DoS.
Tested against Metasploit 5.0.20.
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.