Metasploit mailing list archives
Re: Auto targeting with multi platform payloads
From: Rob Fuller <mubix () room362 com>
Date: Sun, 29 Jun 2014 00:31:43 -0400
You could write your auto-targeting into the "check" function thus giving the user the chance to select their target and the proper payload. Most of the other "auto" target exploits stay with the same target OS and just switch offsets based on versions of the OS that matter to the exploitation piece. What I would suggest is to do a check in the module code to exit if the target system and payload don't match up and suggest to the user to switch payloads. -- Rob Fuller | Mubix Certified Checkbox Unchecker Room362.com | Hak5.org On Wed, Jun 25, 2014 at 11:36 AM, Pedro Ribeiro <pedrib () gmail com> wrote:
On 24 Jun 2014 18:40, "Pedro Ribeiro" <pedrib () gmail com> wrote:Hi, I'm building a multi platform exploit which has auto targeting and isable to identify its Linux and Windows targets. I'm using a global variable to store the chosen target. With that I set the arch and platform correctly, and then invoke generate_payload_exe with those parameters.However when my auto targeting function identifies a Linux target, thegenerated payload defaults to the windows meterpreter.I have a feeling that I have to tell metasploit which target I haveended up choosing. I have tried to set the "target" variable, but it seems to have local function scope only. Meaning if I set it in one function, it resets to automatic in another function.So I guess the question is - after I've chosen the target via my autotargeting function, how do I set that as the "real" target (target 1 ,2 or 3, not 0 / auto) so that metasploit generates the correct platform payload? Should I be using a global variable, or is there a cleaner way to do it?Regards PedroOK I had a look at other modules and it seems the same thing is happening. I still don't think this behaviour is correct, there must be a way to select automatically a payload for the target platform? _______________________________________________ https://dev.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://dev.metasploit.com/mailman/listinfo/framework
Current thread:
- Auto targeting with multi platform payloads Pedro Ribeiro (Jun 24)
- Re: Auto targeting with multi platform payloads Pedro Ribeiro (Jun 25)
- Re: Auto targeting with multi platform payloads Rob Fuller (Jun 28)
- Re: Auto targeting with multi platform payloads Pedro Ribeiro (Jun 29)
- Re: Auto targeting with multi platform payloads Rob Fuller (Jun 28)
- Re: Auto targeting with multi platform payloads Pedro Ribeiro (Jun 25)