pwnspoof
pwnspoof copied to clipboard
punk-security
Pwnspoof repository
Currently an attack consists of random payload selection into known injection points and it would be better if we could inject more elaborate stories as attack sequences.
Hello, I tried python pwnspoof.py banking --server-fqdn pwnedbank.co.uk --attack-type command_injection --server-type IIS --out iis-command-injection.log But there are no command injection strings in log. So it doesn't work as expected.
Add a dockerfile so users can self build if needed rather than installing python, added example how to run. I tried getting /dev/stdout support but something a little bit odd....
As a stretch, it would be awesome if we could provide a guide using one of the free docker SaaS services to generate logs nice and easy