Ports scanning using Metasploit
On your penetration testing, finding ports and services is important. In the real world, I exploited some systems by identifying open ports and try to attack this port. This articles, I am going to...
Category: Metasploit
Exploit Windows using PowerShell attack
msf > use exploit/windows/misc/hta_server This module hosts an HTML Application (HTA) that when opened will run a payload via Powershell. When a user navigates to the HTA file they will be prompted by IE...
Generate-Macro: malicious Microsoft Office document with a specified payload & persistence method
SYNOPSIS Generate-Macro is a standalone PowerShell script that will generate a malicious Microsoft Office document with a specified payload and persistence method. [!] This script will temporarily disable 2 macro security settings while creating...
Metasploitable3: Exploiting Axis2 vulerability
Introduction Apache Axis2™ is a Web Services / SOAP / WSDL engine, the successor to the widely used Apache Axis SOAP stack. There are two implementations of the Apache Axis2 Web services engine –...
Metasploit official support iOS meterpreter
This change includes a few changes needed to get a working iOS meterpreter stageless payload. Currently, you’ll need to run it on a jailbroken arm64 iPhone (e.g 5S+). Unless I’ve done something stupid locally...
Top 9 Best Tool for Penetration Tester
We have filled the world of hackers with infinite fantasy and fear, but with the rise of technology and security in the field of progress, hacking technology has become increasingly common. In fact, network...
Dlink DIR-850L UnAuthenticated OS Command Execution
Dlink DIR-850L UnAuthenticated OS Command Execution The vulnerabilities have been reported as part of Hack2Win competition, for more information about Hack2Win – Hack2Win – https://blogs.securiteam.com/index.php/archives/3310. The vulnerabilities found in D-Link 850L are: Remote Command Execution...
peinjector – MITM PE file infector
peinjector The executable file format on the Windows platform is PE COFF. The peinjector provides different ways to infect these files with custom payloads without changing the original functionality. It creates patches, which are...
Install Metasploit Framework on any Android devices
Install Metasploit Framework on any Android devices Requirement: Termux Android 5.0 or later Internet connection How to Open Termux, type command $ apt update $ apt upgrade Install wget $ apt install wget Download metasploit.sh script $ wget https://github.com/Auxilus/Auxilus.github.io/blob/master/metasploit.sh Run metasploit.sh script...
SpyNoteShell: backdooring apks files & persisten meterpreter session
SpyNoteShell Simple Python tool for backdooring apks files (with meterpreter or shell of Metasploit) Install Requirement apktool python signapk Metasploit Framework Java SDK Java Download git clone https://github.com/H0nus/SpyNoteShell.git ADDITIONAL FILES: SpyNoteShell.cna – This is the...
