meterpreter

[Hack] Metasploit: stageless meterpreter

For those who missed that, stageless meterpreter now works with user proxy settings and that rocks ! Why ? Standard delivery of payloads with metasploit uses a (small) stager that connects to metasploit handler to download and execute the stage (the final payload). It works most of the time but when you try to establish a meterpreter session through a web proxy with anti-malware inspection and/or a restrictive configuration (e.g: do not allow Portable Executable download) it fails because the proxy blocks the download of the stage (which contains metsrv, stdapi and priv libraries).

Continue reading