Metasploit Decloak Project v2

Roc Admin onionroutor at gmail.com
Mon Dec 15 00:57:18 UTC 2008


I just noticed that HDMoore re-released his decloak engine.

http://metasploit.com/data/decloak

He's improved some of the attacks from before like java, flash, and DNS in
pretty interesting ways.  There's also a test for Microsoft Office documents
which I thought was interesting.  From the page:

When Microsoft Office is installed and configured to automatically open
> documents, a file can be returned which automatically downloads an image
> from the internet. This can bypass proxy settings and expose the real DNS
> servers of the user.


It doesn't seem like there are any new attack vectors but I wanted to pass
it along to see if anyone had comments.

-ROC Tor Admin
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20081214/f1dd528d/attachment.htm>


More information about the tor-talk mailing list