Metasploit mailing list archives
Metasploit vs Core Impact "Set as Source" Option
From: danuxx at gmail.com (Danux)
Date: Fri, 14 Sep 2007 13:32:24 -0500
Ok, thanks in Advance for my last question, I have another question, i know that through meterpreter we can use its modules in order to redirect a port from the victim machine to another one in the LAN, but is there something like the "Set as Source" options used in Core Impact? so that we can compromise another network segment? if so? do you have an example? On 9/14/07, H D Moore <hdm at metasploit.com> wrote:
These are two different things. To use the MSN exploit, you need to force MSN to load this exploit DLL into memory. This is normally done by a sequence of open process, alloc mem, start thread, loadlibrary calls to the target process. The metasploit DLL injection payloads work by exploiting a target process and then loading a DLL into memory. In this case, you want to load a DLL on the attacking side, to exploit a different host. On Friday 14 September 2007 12:23, Danux wrote:They say i need to: "inject the dll to msn messenger .... process. I know metasploit already works that way but i would like to learn how to do it manually. I have no skill about DLL programming nor injection, do you have a tutorial or something like that to understand it?
-- Danux, CISSP Chief Information Security Officer Macula Security Consulting Group www.macula-group.com
Current thread:
- Metasploit vs Core Impact "Set as Source" Option Danux (Sep 14)
- Metasploit vs Core Impact "Set as Source" Option cg (Sep 14)
- Metasploit vs Core Impact "Set as Source" Option Danux (Sep 17)
- Metasploit vs Core Impact "Set as Source" Option cg (Sep 14)