Create ibm_mq_channel_brute.md

2018-10-28 17:13:25 +00:00 · 2018-10-28 17:13:25 +00:00 · ba204b9854
parent a23cb7dfe8
commit ba204b9854
1 changed files with 33 additions and 0 deletions
--- a/documentation/modules/auxiliary/scanner/misc/ibm_mq_channel_brute.md
+++ b/documentation/modules/auxiliary/scanner/misc/ibm_mq_channel_brute.md
@ -0,0 +1,33 @@
+
+## Vulnerable Application
+
+  * IBM Downloads page: https://developer.ibm.com/messaging/mq-downloads/
+  * Tested on IBM MQ 7.5, 8 and 9
+  * Usage:
+    * Download and install MQ Server
+    * Create a new Queue Manager
+    * Create a new channel (without SSL)
+    * Run the module
+
+## Verification Steps
+
+  Example steps in this format (is also in the PR):
+
+  1. Install IBM MQ Server 7.5, 8, or 9
+  2. Start msfconsole
+  3. Do: ```use auxiliary/scanner/misc/ibm_mq_channel_brute```
+  4. Do: ```set channels_file <channel_list_file>```
+  5. Do: ```set rhosts <target_IP>```
+  6. Do: ```set rport <port>```
+  7. Do: ```run```
+
+## Options
+
+  **The CHANNELS_FILE option**
+
+  This option should contain the path to a text file which contains a list of channel names that will be checked. One channel name per line.
+
+## Scenarios
+
+  This module can be used to identify a list of channel names that are configured on the Queue Manager. Additionally, the module will return whether each identified channel uses SSL and if it MQI type.
+  After obtaining a list of valid channel names, these can be used to further enumerate the MQ installation. For example, the ibm_mq_enum module can be executed using a valid channel name in order to obtain information regarding the Queue Manager.