From 12413b1cbaf95814b93615a679bdcad84e7f8788 Mon Sep 17 00:00:00 2001 From: Mariusz Date: Tue, 29 Jan 2019 14:21:36 +0100 Subject: [PATCH 1/2] Update README.md --- networks/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/networks/README.md b/networks/README.md index 4d047fd..1cd571d 100644 --- a/networks/README.md +++ b/networks/README.md @@ -15,7 +15,7 @@ CDP counters : - **`dtpscan.py`** - DTP Scanner - simple script trying to determine type of configured switchport and DTP negotation mode in order to assist in VLAN Hopping attacks. ([gist](https://gist.github.com/mgeeky/3f678d385984ba0377299a844fb793fa)) -- **`host-scanner-via-udp.py`** - Running Hosts scanner leveraging ICMP Destination Unreachable response upon UDP closed port packet. ([gist](https://gist.github.com/mgeeky/eae20db2d3dd4704fc6f04ea233bca9c)) +- **`host-scanner-via-udp.py`** - Running Hosts scanner leveraging ICMP Destination Unreachable response upon UDP closed port packet. Requires root/Administrator privileges. ([gist](https://gist.github.com/mgeeky/eae20db2d3dd4704fc6f04ea233bca9c)) - **`HSRPFlooder.py`** - Proof of concept _HSRP Coup State: Active_ flooder, trying to provoke Denial of Service within LAN segment due to tunnelling packets to the non-existent gateway that won active-router election. Not working stabily at the moment. From 1fb2ebb5acd672f0a6d4947e4c7cb27b582466e3 Mon Sep 17 00:00:00 2001 From: Mariusz Date: Tue, 29 Jan 2019 14:22:30 +0100 Subject: [PATCH 2/2] Update smtpdowngrade.rb --- networks/smtpdowngrade.rb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/networks/smtpdowngrade.rb b/networks/smtpdowngrade.rb index 81d5449..bdec12a 100644 --- a/networks/smtpdowngrade.rb +++ b/networks/smtpdowngrade.rb @@ -30,7 +30,7 @@ class SMTPDowngrade < BetterCap::Proxy::TCP::Module def smtp_parse_request(event) return nil if not event.data - if event.data =~ /^STARTTLS\s*\r\n/ + if event.data =~ /^STARTTLS.*/ BetterCap::Logger.info "[#{'SMTP Downgrade'.green}] Intercepted STARTTLS command." @respondwith = "454 4.7.0 TLS not available due to local problem\r\n"