dnrops
/
metasploit-framework
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Default to 1 round compression.

This commit is contained in:
joev 2013-11-17 15:35:35 -06:00
parent 1e3860d648
commit 43d2711b98
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
modules/auxiliary/dos/http/gzip_bomb_dos.rb
View File

@ -14,12 +14,15 @@ class Metasploit3 < Msf::Auxiliary
super(update_info(info, super(update_info(info,
'Name' => 'Gzip Memory Bomb DOS', 'Name' => 'Gzip Memory Bomb DOS',
'Description' => %q{ 'Description' => %q{
This module generates and hosts a small (~300byte) gzip file that decompresses to 10GB. This module generates and hosts a 10MB single-round gzip file that decompresses to 10GB.
Many applications will not implement a length limit check and will eat up all memory and Many applications will not implement a length limit check and will eat up all memory and
eventually die. This can also be used to kill systems that download/parse content from eventually die. This can also be used to kill systems that download/parse content from
a user-provided URL (image-processing servers, AV, websites that accept zipped POST data, etc). a user-provided URL (image-processing servers, AV, websites that accept zipped POST data, etc).
A FILEPATH datastore option can also be provided to save the .gz bomb locally. A FILEPATH datastore option can also be provided to save the .gz bomb locally.
Some clients (Firefox) will allow for multiple rounds of gzip. ROUNDS=3 and SIZE=10240 (10gb)
will generate a 300 byte gzipped file.
}, },
'Author' => 'Author' =>
[ [
@ -46,7 +49,7 @@ class Metasploit3 < Msf::Auxiliary
[ [
OptString.new('FILEPATH', [false, 'Local path to (optionally) save the generated gzip']), OptString.new('FILEPATH', [false, 'Local path to (optionally) save the generated gzip']),
OptInt.new('SIZE', [true, 'Size of uncompressed data in megabytes (10GB default).', 10240]), OptInt.new('SIZE', [true, 'Size of uncompressed data in megabytes (10GB default).', 10240]),
OptInt.new('ROUNDS', [true, 'Rounds of gzip compression.', 3]), OptInt.new('ROUNDS', [true, 'Rounds of gzip compression. Some applications (FF) support > 1.', 1]),
OptString.new('URIPATH', [false, 'Path of URI on server to the gzip bomb (default is random)']) OptString.new('URIPATH', [false, 'Path of URI on server to the gzip bomb (default is random)'])
], ],
self.class) self.class)