Metasploit mailing list archives
Re: inline meterpreter payload
From: Sherif El-Deeb <archeldeeb () gmail com>
Date: Fri, 7 Sep 2012 15:57:34 +0300
AFAIK there's no way to create a single stage meterpreter currently, I did however try to hard code all the parameters, and compile the metsrv.dll as an exe along with all the necessary changes "winmain, compiler settings... Etc." But still working on it and will.post back the steps once/if I succeed. It should not be that difficult to be implemented in the framework I guess "the inline meterpreter", but will only be good as a stand alone exe since I cannot think of an exploit that has space for such a gigantic payload :) @HD: can we please have an inline meterpreter payload that overcomes all the issues of getting the second stage? "e.g. Internet gateways that do not allow dll files to be downloaded..." Instead of banging our heads against the wall compiling an exe from meterpreter's source? On Sep 7, 2012 2:14 PM, "_Vlad_" <karavay () gmail com> wrote:
Good day to all, have got 2 questions (which i did post on rapid7 but got no reply so i'll rephase it abit ): 1 ) Is there a method to generate inline (all in one ) meterpreter (reverse_https for example) PE through msfpayload ,as by default it only spits out the Stager (1st stage). 2 ) does meterpreters 1 st stage (the initial stager) provides an encrypted channel for meterpreter core loading (i belive its "reflective" stub which handles it ) i know it does implement TLS at later stages? Look forward to any feedback on this, Thanks, -- Regards Vlad, ---------------------------------------------------------------- Public key - Version: GnuPG v1.4.7 (GNU/Linux) Download: http://keyserver.veridis.com:11371/export?id=8855460614872382293&created=1201896764000 Description: http://keyserver.veridis.com:11371/search?q=vlad.O&searchformsubmit=Search _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- inline meterpreter payload _Vlad_ (Sep 07)
- Re: inline meterpreter payload Sherif El-Deeb (Sep 07)
- Re: inline meterpreter payload Richard Miles (Sep 11)
- Re: inline meterpreter payload Joshua Smith (Sep 11)
- Re: inline meterpreter payload Richard Miles (Sep 11)
- Re: inline meterpreter payload egypt (Sep 11)
- Re: inline meterpreter payload Chip (Sep 11)
- Re: inline meterpreter payload egypt (Sep 11)
- Re: inline meterpreter payload Joshua Smith (Sep 11)
- Re: inline meterpreter payload Stephen Haywood (Sep 11)
- Re: inline meterpreter payload Stephen Haywood (Sep 11)
- Re: inline meterpreter payload Michael Schierl (Sep 12)
- Re: inline meterpreter payload Richard Miles (Sep 11)
- Re: inline meterpreter payload Sherif El-Deeb (Sep 07)