my prototype shit so far
git-svn-id: file:///home/svn/incoming/trunk@2490 4d416f70-5f16-0410-b530-b9f4589650daunstable
parent
ce99b97c35
commit
bdda20cb14
|
@ -0,0 +1,15 @@
|
|||
msfconsole > jobinit recon tcp_port_scan 10.0.0.0/24 0-65535
|
||||
Job 1 created.
|
||||
msfconsole > autoexec exploit msrpc_dcom when RPORT=135
|
||||
The msrpc_dcom will be automatically executed when:
|
||||
|
||||
1. Remote port 135 is found to be open.
|
||||
msfconsole > jobexec 1
|
||||
Job 1 is now executing
|
||||
msfconsole >
|
||||
Session 1 is ready for host 10.0.0.7
|
||||
msfconsole > interact 1
|
||||
meterpreter> use -m Net
|
||||
...
|
||||
^Z
|
||||
msfconsole >
|
|
@ -0,0 +1,21 @@
|
|||
#!/usr/bin/ruby -I../Framework -I../Modules
|
||||
|
||||
require 'Msf/Framework'
|
||||
require 'Encoders/Generic/IA32/jmp_call_additive'
|
||||
|
||||
framework = Msf::Framework.new
|
||||
|
||||
framework.add_log_sink(Msf::Logging::Sinks::Flatfile.new('/tmp/msfcli.log'))
|
||||
|
||||
#encoder = framework.encoders.instantiate('gen_ia32_jmp_call_additive')
|
||||
encoder = Msf::Encoders::Generic::IA32::JmpCallAdditive.new
|
||||
|
||||
begin
|
||||
encoded = encoder.encode("\xcc\x90\x90\x90ABCDEFGHIJKLMNOPQRSTUVWXYZ", "\x87")
|
||||
rescue Msf::Encoding::BadcharException => detail
|
||||
puts "bad char at #{detail.index} #{detail.buf.unpack('H*')[0]}"
|
||||
|
||||
exit
|
||||
end
|
||||
|
||||
puts encoded.unpack("H*")[0]
|
Loading…
Reference in New Issue