ttx99
commented
3 weeks ago @frozen905 do you know some other scripts like this can you link me
Open frozen905 opened 3 weeks ago
ttx99
commented
3 weeks ago @frozen905 do you know some other scripts like this can you link me
frozen905
commented
3 weeks ago I need a competent bash coder familiar with basic pcap analysis and troubleshooting to get in touch with me
In it's current state I don't believe it's usable at all unless you're scanning a very specific outdated server type.. you can stop trying
The thing is, someone can easily fix this -- I just can't figure it out. I've been trying to use AI but struggling
It needs some basic URL structure adjustments and more importantly a way to understand if it's working correctly or not
Hello again!
I have been absent from messing with this stuff for a while but decided to pick it all back up today, and downloaded the latest mcbash
The portal I was trying appeared to be stalled and not working, so I made a tcpdump .pcap capture to look at what was going on, and it was querying /portal.php? instead of /stalker_portal/server/load.php? which is much more common these days (Stalker portals -- great feature suggestion would be a flag that lets you alternate between URL structure btw!)
So I opened up the mcbash bin file and swapped out all occourances of /portal.php? to /stalker_portal/server/load.php? instead, yet to my surprise the app is still stuck and not proceeding
Recorded a .pcap again, and it seems to just be stuck in a handshake loop for some reason and not grabbing the token or finding what it's looking for?
I'm assuming an incredibly easy fix -- can someone please take a look at this mcbash code modification I've made: https://0x0.st/X0hK.mod
And this capture which shows it still failing: http://0x0.st/X0h4.pcap
It's getting the response it needs as you can see -- but it's not parsing it?
I look forward to a reply, I am subscribed to notifications, thank you kindly!