Question 1
Is there a way that anyone opens my payload and I get a meterpreter session or a shell... a command or a bash script gets executed automatically on the victim...
Question 2
Can I do something like make a payload in bash and then custom code in bash which gets executed after the payload works its magic?? Or like a I have a bash ir sh script to which I inject payload as a new thread and the payload runs as well as the bash script??
Forum Thread:
How to Track Who Is Sms Bombing Me .
4
Replies
Forum Thread:
Removing Pay-as-You-Go Meter on Loan Phones.
1
Replies
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
3
Replies
Forum Thread:
moab5.Sh Error While Running Metasploit
17
Replies
Forum Thread:
Execute Reverse PHP Shell with Metasploit
1
Replies
Forum Thread:
Install Metasploit Framework in Termux No Root Needed M-Wiz Tool
1
Replies
Forum Thread:
Hack and Track People's Device Constantly Using TRAPE
35
Replies
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
Metasploit Error:
Handler Failed to Bind
41
Replies
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
How To:
Scan for Vulnerabilities on Any Website Using Nikto
How To:
Make Your Own Bad USB
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
Hack Like a Pro:
Networking Basics for the Aspiring Hacker, Part 2 (TCP/IP)
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
How To:
Exploit EternalBlue on Windows Server with Metasploit
How To:
Crack SSH Private Key Passwords with John the Ripper
How To:
Extract Bitcoin Wallet Addresses & Balances from Websites with SpiderFoot CLI
How To:
Escape Restricted Shell Environments on Linux
How To:
Create Rainbow Tables for Hashing Algorithms Like MD5, SHA1 & NTLM
How To:
Phish for Social Media & Other Account Passwords with BlackEye
How To:
Unlock Facial Detection & Recognition on the Inexpensive ESP32-Based Wi-Fi Spy Camera
How To:
Fix Bidirectional Copy/Paste Issues for Kali Linux Running in VirtualBox
How To:
Run USB Rubber Ducky Scripts on a Super Inexpensive Digispark Board
How To:
Build an Off-Grid Wi-Fi Voice Communication System with Android & Raspberry Pi
How To:
Inconspicuously Sniff Wi-Fi Data Packets Using an ESP8266
How To:
Use SQL Injection to Run OS Commands & Get a Shell
How To:
Create Packets from Scratch with Scapy for Scanning & DoSing
How To:
Create & Obfuscate a Virus Inside of a Microsoft Word Document
How To:
Exploit Java Remote Method Invocation to Get Root
5 Responses
Sounds like the Social engineering toolkit on Kali might be a possible candidate for you to look into. Using your social engineering sensibilities if you can get your victim to execute your payload, bingo. There's no need for a custom script unless you prefer, it might work better. When you go through the process it will prompt you for the script.
Thats not what I asked... I asked like if someone opens my payload.. a script like persistance gets automatically executed..
Or like there is a persistance script and I inject payload as a new thread in the script only.. will it work??
I think you should read up on backdoors and post exploitation techniques. I gave you a potential method where you could do what you wanted to which is to create a backdoor. Maybe this might help you: https://www.offensive-security.com/metasploit-unleashed/metasploit-fundamentals/
I agree 100% with both of her posts.
hey thanks :)
Share Your Thoughts