metasploit – Mahyar Notes

Hosting and hiding your C2 with Docker and Socat

mahyar
February 17, 2020
0 Comment
hack, Linux, metasploit, Uncategorized

Abstract We want to run a simple C2 that is not exposed to the internet, with multiple socats redirecting our payload delivery and session handling correctly. All this with the help of Docker. It’s straightforward once you’ve gotten the grip. Why Using containers me...

Post Exploitation Hacking Techniques

mahyar
November 28, 2017
0 Comment
hack, metasploit

we’ll talk about post exploitation hacking techniques you can use after having a meterpreter shell on a remote system. You’ll see things like: Privilege Escalation Maintaining Access Data Harvesting Weak Password Cracking NOTE: Don’t take this guide as standard m...

exploit windows PC using eternalblue smb remote windows kernel pool corruption

mahyar
November 15, 2017
0 Comment
hack, metasploit

This module is a port of the Equation Group ETERNALBLUE exploit, part of the FuzzBunch toolkit released by Shadow Brokers. There is a buffer overflow memmove operation in Srv! SrvOs2FeaToNt. The size is calculated in Srv!SrvOs2FeaListSizeToNt, with mathematical error where a DWOR...