Metasploit mailing list archives
Re: Change reverse_http (User-Agent:) and (Server:) headers
From: Sherif El-Deeb <archeldeeb () gmail com>
Date: Wed, 2 Nov 2011 07:01:34 +0300
Thank you, a lot. - I copied the source code from "/opt/framework/msf3/external/source/meterpreter" - In the file "server_setup.c" I changed "Meterpreter/Windows" to what I want "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)". - Compiled the solution in VC++, replaced the old metsrv.dll in "/opt/framework/msf3/data/meterpreter" with the newly created one. - It works! now looks less suspicious. Thanks again, On Tue, Nov 1, 2011 at 7:31 PM, HD Moore <hdm () metasploit com> wrote:
On 11/1/2011 6:52 AM, Sherif El-Deeb wrote:In meterpreter/reverse_http, Is there a way to let the (User-Agent:) from the client side and the (Server:) headers from the handler side be user specified? I guess we all know why setting those two to something other than (Meterpreter/Windows) and (Rex) is going to be a much better idea.Its possible by changing the Meterpreter source code for all requests after the initial stage has executed. You could enable this in the stage-0 payload, but it would significantly increase the size. -HD _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- Change reverse_http (User-Agent:) and (Server:) headers Sherif El-Deeb (Nov 01)
- Re: Change reverse_http (User-Agent:) and (Server:) headers HD Moore (Nov 01)
- Re: Change reverse_http (User-Agent:) and (Server:) headers Sherif El-Deeb (Nov 01)
- Re: Change reverse_http (User-Agent:) and (Server:) headers HD Moore (Nov 01)