Active Topics
-
TLS 1.2 for N9 is ready (29)
to MeeGo / Harmattan by smatkovi - 3 hrs, 10 mins ago -
Error after installing Leste on sdcard (12)
to Maemo 7 / Leste by teroyk - 3 hrs, 57 mins ago -
Camera phone competition March 2023 "Endless" (35)
to General by Maemish - 3 days, 12 hrs ago -
Maemo repository (3)
to Community by torsen - 4 days, 4 hrs ago -
Introducing ubiboot N9 (multiboot OS loader) (1,393)
to Alternatives by smatkovi - 6 days, 9 hrs ago - more...
 |
|
2007-06-27
, 15:07
|
|
Posts: 91 |
Thanked: 25 times |
Joined on Mar 2007
@ Marlow, Bucks
|
#22
|
Metasploit framework 3 seems to work great on the N800, but I'm finding a problem that if you try to show exploits in the console (and I think msfweb too) mode, it only shows a few of the total available. In msfcli mode it's possible to use |more to display the exploits a page at a time, but anyone know how to do the equivalent with msfconsole or msfweb?
And does anyone know if it would be possible to compile the LORCON module to use on the N800 so that it would be possible to carry out the exploits such as the Broadcom Wireless Driver Probe Response SSID Overflow in the Metasploit framework 3?
And does anyone know if it would be possible to compile the LORCON module to use on the N800 so that it would be possible to carry out the exploits such as the Broadcom Wireless Driver Probe Response SSID Overflow in the Metasploit framework 3?
 |
|
2007-06-28
, 01:43
|
|
Posts: 919 |
Thanked: 37 times |
Joined on Aug 2006
@ /dev/null
|
#23
|
Originally Posted by mfresh
Metasploit framework 3 seems to work great on the N800, but I'm finding a problem that if you try to show exploits in the console (and I think msfweb too) mode, it only shows a few of the total available. In msfcli mode it's possible to use |more to display the exploits a page at a time, but anyone know how to do the equivalent with msfconsole or msfweb?
And does anyone know if it would be possible to compile the LORCON module to use on the N800 so that it would be possible to carry out the exploits such as the Broadcom Wireless Driver Probe Response SSID Overflow in the Metasploit framework 3?
I dont have that issue I do have the issue where msfweb stop working for me... I am going to reflash my device and start all over.....
And I am sure somebody can find a way to port your request.
__________________
<gla55> security stuff is just to piss off people, really
<gla55> security stuff is just to piss off people, really
|
|
2007-07-02
, 20:56
|
|
Posts: 91 |
Thanked: 25 times |
Joined on Mar 2007
@ Marlow, Bucks
|
#24
|
Updating Metasploit?
I use Metaspoit on a Linux laptop, and updating is just a matter of running SVN update
SO here's my question: what's the best way to update Metasploit 3 running on the N800. There's no SVN client for the N800 (afaik), and the tarball you can down from the Metasploit site is nothing like up to date.
I've tried doing an SVN update on the Laptop and transferring the whole Metasploit folder and all its subfolders to the N800 but that doesn;t seem to work porperly. I read somewhere that it's necessary to remove all SVN traces from a folder on a laptop before it can be moved and run properly on the N800 but I am not sure what that means. Anyone else got a good system for keeping Metasploit up to date on the N800? The tarball from www.metasploit.com has 177 exploits, while the latest version downloaded using SVN has 202 so there is quite a difference.
I use Metaspoit on a Linux laptop, and updating is just a matter of running SVN update
SO here's my question: what's the best way to update Metasploit 3 running on the N800. There's no SVN client for the N800 (afaik), and the tarball you can down from the Metasploit site is nothing like up to date.
I've tried doing an SVN update on the Laptop and transferring the whole Metasploit folder and all its subfolders to the N800 but that doesn;t seem to work porperly. I read somewhere that it's necessary to remove all SVN traces from a folder on a laptop before it can be moved and run properly on the N800 but I am not sure what that means. Anyone else got a good system for keeping Metasploit up to date on the N800? The tarball from www.metasploit.com has 177 exploits, while the latest version downloaded using SVN has 202 so there is quite a difference.
|
|
2007-07-02
, 21:11
|
|
Posts: 919 |
Thanked: 37 times |
Joined on Aug 2006
@ /dev/null
|
#25
|
I been using SVN in my laptop and transfering thru SCP to my N800 no problems here... Well maybe thats why msfweb stop working?!?
__________________
<gla55> security stuff is just to piss off people, really
<gla55> security stuff is just to piss off people, really
|
|
2007-07-02
, 21:37
|
|
Posts: 91 |
Thanked: 25 times |
Joined on Mar 2007
@ Marlow, Bucks
|
#26
|
Interesting, SeRi@lDiE.
When I tried copying the whole thing over from my laptop, msfconsole took an age to load, and then I ran load db_sqlite but I couldn't get beyond that to create a new database for db_nmap and db_autopwn
I wonder if that could be related in any way to SVN. I came across this instruction:
"When the svn checkout is done go into the Metasploit root directory and run the following command. find . -name .svn -exec rm -fr {} \; "
but when I tried it I just got an error message. I don't know enough Linux to even know what that command is meant to be doing. Any ideas?
When I tried copying the whole thing over from my laptop, msfconsole took an age to load, and then I ran load db_sqlite but I couldn't get beyond that to create a new database for db_nmap and db_autopwn
I wonder if that could be related in any way to SVN. I came across this instruction:
"When the svn checkout is done go into the Metasploit root directory and run the following command. find . -name .svn -exec rm -fr {} \; "
but when I tried it I just got an error message. I don't know enough Linux to even know what that command is meant to be doing. Any ideas?
|
|
2007-07-02
, 22:24
|
|
Posts: 919 |
Thanked: 37 times |
Joined on Aug 2006
@ /dev/null
|
#27
|
Originally Posted by mfresh
If I am not mistaken that will remove your SVN information "trace"
Interesting, SeRi@lDiE.
When I tried copying the whole thing over from my laptop, msfconsole took an age to load, and then I ran load db_sqlite but I couldn't get beyond that to create a new database for db_nmap and db_autopwn
I wonder if that could be related in any way to SVN. I came across this instruction:
"When the svn checkout is done go into the Metasploit root directory and run the following command. find . -name .svn -exec rm -fr {} \; "
but when I tried it I just got an error message. I don't know enough Linux to even know what that command is meant to be doing. Any ideas?
I do not run that command dont see the need to it.
__________________
<gla55> security stuff is just to piss off people, really
<gla55> security stuff is just to piss off people, really
|
|
2007-07-02
, 22:29
|
|
Posts: 91 |
Thanked: 25 times |
Joined on Mar 2007
@ Marlow, Bucks
|
#28
|
Thanks for the info.
Byou reflash your machine (though with any luck we'll all be doing that with the new firmware sometime this month) you could always download and untar the tarball from metasploit in a different folder to your existing updated one to see if that works (ie to see if msfweb doesn't work because of anything to do with SVN or whether you have a problem with your Ruby/Rails installation or something else.
Just a thought - apologies if it's so obvious you've already tried it!
Byou reflash your machine (though with any luck we'll all be doing that with the new firmware sometime this month) you could always download and untar the tarball from metasploit in a different folder to your existing updated one to see if that works (ie to see if msfweb doesn't work because of anything to do with SVN or whether you have a problem with your Ruby/Rails installation or something else.
Just a thought - apologies if it's so obvious you've already tried it!
|
|
2007-07-02
, 22:37
|
|
Posts: 919 |
Thanked: 37 times |
Joined on Aug 2006
@ /dev/null
|
#29
|
Thanks mfresh I did try that 
Thats why I am going to reflash.
Thanks though!
Thats why I am going to reflash.Thanks though!
__________________
<gla55> security stuff is just to piss off people, really
<gla55> security stuff is just to piss off people, really
|
|
2007-07-09
, 20:47
|
|
Posts: 19 |
Thanked: 1 time |
Joined on Jun 2007
@ North London, UK
|
#30
|
Has anyone got a install file for metasploit im not sure how instal it or maybe a guidel
__________________
IT Consultant/.Net Developer/Security Enthusiast
IT Consultant/.Net Developer/Security Enthusiast
Mhhhhhh I am going to try and replicate the issue.
Will keep u post it.
<gla55> security stuff is just to piss off people, really