This commit refactors ARP and DHCP poisoning:

DHCP poisoning now works on Windows, additionaly it's been optimized for performance improvements ARP poisoning has been optimized with and internal cache and some algo improvements cve-details-parser.py has been added to the utils/ directory to help adding exploits to the BrowserSniper config file I'm currently working on adding to the filepwn plugin all of the missing options that bdfproxy stand-alone has
2025-07-06 13:02:24 -07:00 · 2015-07-25 02:49:41 +02:00 · 2015-07-25 02:49:41 +02:00 · ba14ed8687
commit ba14ed8687
parent 5e2f30fb89
35 changed files with 1082 additions and 676 deletions
--- a/plugins/responder.py
+++ b/plugins/responder.py
@ -17,6 +17,7 @@
 # Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
 # USA
 #
+import flask

 from plugins.plugin import Plugin
 from twisted.internet import reactor
@ -53,13 +54,8 @@ class Responder(Plugin):

        if options.wpad:
            from core.servers.http.HTTPserver import HTTPserver
-            import flask
-            
-            server = HTTPserver().server
-            
-            @server.route('/<wpad_req>')
-            def wpad(wpad_req):
-                if (wpad_req == 'wpad.dat') or (wpad_req.endswith('.pac')):
+            def wpad_request(path):
+                if (path == 'wpad.dat') or (path.endswith('.pac')):
                    payload = self.config['Responder']['WPADScript']
                    
                    resp = flask.Response(payload)
@ -70,6 +66,8 @@ class Responder(Plugin):

                    return resp

+            HTTPserver().add_endpoint(wpad_request)
+
        if self.config["Responder"]["MSSQL"].lower() == "on":
            from core.responder.mssql.MSSQLserver import MSSQLserver
            MSSQLserver().start(smbChal)