I mean the final file must be with a file extension of ".Doc" , and I want the trojan to be made by myself(not a metasploit one). Can I achieve that with metasploit ?
And another question, how do I find out all the exploits with MS Office? People of course always better use the most new ones,right?
Thank you!
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
Metasploit Error:
Handler Failed to Bind
41
Replies
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
Forum Thread:
How to Hack School Website
11
Replies
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
38
Replies
Forum Thread:
Hacking with Ip Only Part [1] { by : Mohamed Ahmed }
5
Replies
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
How To:
Exploit EternalBlue on Windows Server with Metasploit
How To:
Dox Anyone
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
Tutorial:
Create Wordlists with Crunch
How To:
Enumerate SMB with Enum4linux & Smbclient
How To:
Find Passwords in Exposed Log Files with Google Dorks
Hacking Windows 10:
How to Dump NTLM Hashes & Crack Windows Passwords
How To:
Use Kismet to Watch Wi-Fi User Activity Through Walls
How To:
Use Command Injection to Pop a Reverse Shell on a Web Server
How To:
Beginner's Guide to OWASP Juice Shop, Your Practice Hacking Grounds for the 10 Most Common Web App Vulnerabilities
How To:
Do a Simple NMAP Scan on Armatige
How To:
Automate Wi-Fi Hacking with Wifite2
How To:
Bypass File Upload Restrictions on Web Apps to Get a Shell
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
How To:
Hack Coin-Operated Laudromat Machines for Free Wash & Dry Cycles
How To:
Write an XSS Cookie Stealer in JavaScript to Steal Passwords
How To:
Find Anyone's Private Phone Number Using Facebook
How To:
Discover Hidden HTTP Parameters to Find Weaknesses in Web Apps
4 Responses
Michael:
Welcome to Null Byte!
Metasploit can create a trojan with a .doc extension. See this tutorial. As for using your own, Metasploit will accept your own trojan. You can create it, embed it a .doc and use Metasploit to deliver it.
Hope that answers your question.
OTW
Wow,Thanks OTW. That is awesome. Nobody will reject to open a .doc file. I am learning, does Metasploit allow us make use of the newest (or just new enough) vulnerabilities of MS Office? Or usually just some very old ones? And I don't assume there are a lot of vulnerabilities that can be taken advantage to create a embedded file with a .doc extension?(How does someone know they<like ms10 087 rtf pfragments bof> are able to be used for that?)
Thanks again for the swift reply!
Michael:
Metasploit is a framework for exploitation. This means that it can be used by just about any exploit and payload, including brand new ones that you create.
New vulnerabilities are being found every week in Microsoft Word. Check out this tutorial.
OTW
Thanks OTW. wonderful. I hate myself I get to know this site late :)
Share Your Thoughts