Abstract

A script based attack framework is a type of Web attack program written in scripting language. It has many attack scripts for various vulnerabilities of many systems. It supports quick development of latest attack scripts that are able to exploit zero day vulnerabilities. Such tools present a challenge for the defense side as traditional malware and spy-ware analysis can't catch up with this speed of new attack scripts. In this paper, we propose a system to counter the attacks by these frameworks, especially Metasploit. It involves proposal of a system which is able to block the metasploit attacks in specific cases otherwise alert the administrator. Previous research shows that many IDS and antivirus are ineffective against Metasploit. The proposed system uses a network monitoring application which is able to monitor the connection attempted to the host system and respond accordingly by using algorithm used in the system.