Simple FTP Client Fuzzer
This module will serve an FTP server and perform FTP client interaction fuzzing
Rank
- Normal
Authors
- corelanc0d3r < peter.ve [at] corelan.be >
Vulnerability References
Development
Similar Modules
Usage Information
$ msfconsole
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use auxiliary/fuzzers/ftp/client_ftp
msf auxiliary(client_ftp) > run
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use auxiliary/fuzzers/ftp/client_ftp
msf auxiliary(client_ftp) > run
Module Options
| CYCLIC | Use Cyclic pattern instead of A's (fuzzing payload). (default: true) |
| ENDSIZE | Max Fuzzing string size. (default: 200000) |
| ERROR | Reply with error codes only |
| EXTRALINE | Add extra CRLF's in response to LIST (default: true) |
| FUZZCMDS | Comma separated list of commands to fuzz. (default: LIST,NLST,LS,RETR) |
| RESET | Reset fuzzing values after client disconnects with QUIT cmd. (default: true) |
| SRVHOST | The local host to listen on. This must be an address on the local machine or 0.0.0.0 (default: 0.0.0.0) |
| SRVPORT | The local port to listen on. (default: 21) |
| SSL | Negotiate SSL for incoming connections |
| SSLCert | Path to a custom SSL certificate (default is randomly generated) |
| SSLVersion | Specify the version of SSL that should be used (accepted: SSL2, SSL3, TLS1) (default: SSL3) |
| STARTSIZE | Fuzzing string startsize. (default: 1000) |
| STEPSIZE | Increment fuzzing string each attempt. (default: 1000) |
| WELCOME | FTP Server welcome message. (default: Evil FTP Server Ready) |
| ListenerComm | The specific communication channel to use for this service |
| VERBOSE | Enable detailed status messages |
| WORKSPACE | Specify the workspace for this module |
| TCP::max_send_size | Maximum tcp segment size. (0 = disable) |
| TCP::send_delay | Delays inserted before every send. (0 = disable) |