Thoughts on Security
Archive for category Metasploit
msfgui – now in metasploit
Posted by scriptjunkie in Metasploit on July 16, 2010
The new msfgui is now in metasploit; svn up your msf3/ directory to get it. There is also a good review at http://www.darkoperator.com/blog/2010/7/14/metasploit-new-gui.html Initial reception has been good, although a few bugs have popped up. It supports most scripts and most options on them via a right-click menu on a meterpreter session, generates a basic […]
New msfgui
Posted by scriptjunkie in Metasploit on May 27, 2010
Edit: the new gui has been integrated into metasploit. Update and enjoy. Edit: screenshots here: msfgui/ The old msfgui has fallen out of repair, and no longer works on many installs since the right ruby libraries are hard to get and are no longer maintained. But for a number of reasons I still think it’s […]
Maple exploit
Posted by scriptjunkie in Exploits, Metasploit on May 3, 2010
Exploit for an 0day vulnerability (feature?) in Maple. https://www.metasploit.com/redmine/projects/framework/repository/revisions/9183 Default Maple security settings prevent code from running in a normal maple worksheet (.mw) without user interaction, but those setting do not prevent code in a .maplet from running. Put malicious code at start of .maplet, get the target to double-click and … profit. (As a […]
EXE injection plus
Posted by scriptjunkie in Metasploit on March 26, 2010
For those interested in metasploit (or whatever) payload injection into EXE files, the metasploit patch (now posted http://www.metasploit.com/redmine/projects/framework/repository/revisions/8896) is based on one case, albeit the most likely to work, of my original program in C and Win32 API. This original program also can embed the payload if it fits into unused space at the end of a code section, which […]
Metasploit EXE code injection
Posted by scriptjunkie in Metasploit on March 22, 2010
I recently posed a patch to inject an arbitrary metasploit payload into a win32 exe while attempting to not affect the behavior of the host exe. I’m not the best ruby ninja, but I do at least know a little about the PE format. https://metasploit.com/redmine/issues/1244#change-3739 the patch: https://metasploit.com/redmine/attachments/196/inject.patch Payload is run in a separate thread. […]
Shellcode API hashes
Posted by scriptjunkie in Metasploit on March 5, 2010
For all you shellcoders out there; to make Windows API calling easier, you can use Stephen Fewer’s block_api.asm in the Metasploit tree. http://www.metasploit.com/redmine/projects/framework/repository/revisions/8160/entry/external/source/shellcode/windows/x86/src/block/block_api.asm But you need the function hashes, which if you don’t have the DLL on your current OS, or the python file, or something like that can be annoying. So I posted a […]
-
You are currently browsing the archives for the Metasploit category.
Featured Posts
- Exploiting Ammyy Admin – developing an 0day
- Red Teaming the CCDC
- Installing Linux on a Live Windows System
- Adding Easy SSL Client Authentication To Any Webapp
- Remote Desktop and Die – How to RDP Faster Without Getting Robbed
- Fixing Pass The Hash and 14 Other Problems
- Saving shells with PrependMigrate
- Authenticated Remote Code Execution Methods in Windows
- Running Code From A Non-Elevated Account At Any Time
- Ambush – A New Capability for Advanced Defense
- Malicious VM to Host Attacks
- Direct shellcode execution in MS Office macros
- Original Source Forgery
- Writing Meterpreter Extensions
- Network Nightmare – PXE talk at Defcon
- Bypassing DEP/ASLR in browser exploits with McAfee and Symantec
- Firefox Exploit Analyzed
- Why Encoding Does not Matter and How Metasploit Generates EXE’s
- Shells, terminals, and sudo mitm
- Breaking mobile device crypto with chaos theory and hardware RNG’s
- Black Hat DC Presentation
- Command stagers in Windows
Categories
- /dev/urandom (21)
- CCDC (1)
- Crypto (3)
- Defense (19)
- Exploits (17)
- Legal thoughts (1)
- Metasploit (26)
- Uncategorized (32)
- Vulnerabilities (3)
- webapps (7)
Archives
- November 2021
- September 2021
- February 2021
- April 2020
- February 2020
- January 2020
- December 2019
- May 2019
- July 2018
- March 2018
- August 2017
- July 2017
- April 2017
- March 2017
- January 2017
- October 2016
- September 2016
- August 2016
- June 2016
- March 2016
- January 2016
- November 2015
- October 2015
- September 2015
- July 2015
- May 2015
- January 2015
- October 2014
- September 2014
- July 2014
- May 2014
- March 2014
- February 2014
- December 2013
- November 2013
- October 2013
- September 2013
- July 2013
- June 2013
- May 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- October 2012
- September 2012
- August 2012
- July 2012
- May 2012
- April 2012
- January 2012
- December 2011
- September 2011
- August 2011
- June 2011
- May 2011
- April 2011
- March 2011
- February 2011
- January 2011
- December 2010
- October 2010
- September 2010
- August 2010
- July 2010
- May 2010
- April 2010
- March 2010