Metasploit mailing list archives
Re: Meterpreter autoscripts defined in exploits
From: Rob Fuller <mubix () room362 com>
Date: Sun, 27 Dec 2009 17:52:44 -0500
You can actually already do this via the AutoRunScript variable. Once a connection is made, the script will automagically run. -- Rob Fuller | Mubix Room362.com | Hak5.org | TheAcademyPro.com On Sun, Dec 27, 2009 at 5:40 AM, Stuffe <stuffe.dk () gmail com> wrote:
The idea i have is for meterpreter scipt code to be defined inside exploit modules. So as to be automatically run when connection to the meterpretersession is made using that exploit. I got the idea when i was looking at /modules/exploits/windows/mssql/mssql_payload.rb. The /modules/exploits/windows/mssql/mssql_payload.rb module requires the user to manually remove the uploaded payload (and clear the logs) after exploitation, this should be done automatically. Another obvious example are the exploits that leads to the browser hanging once exploiting, where the user of course quickly terminates the process. Maybe it sounds counterintuitive since meterpreter is not the only payload, but its pretty much becoming the standard i think. Steven _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- Meterpreter autoscripts defined in exploits Stuffe (Dec 27)
- Re: Meterpreter autoscripts defined in exploits Rob Fuller (Dec 27)