Additional Features
Intro to MSFVenom
MSFVenom
is the successor of MSFPayload
and MSFEncode
, two stand-alone scripts that used to work in conjunction with msfconsole
to provide users with highly customizable and hard-to-detect payloads for their exploits.
Let's say we have ftp anonymous access and we see this ->
We see the aspnet_client which means that the box will be able to run .aspx
reverse shells.
Now we need to set up a multi handler with msf
If we navigate to http://10.10.10.5/reverse_shell.aspx we can trigger the .aspx
payload on the web service.
Local Exploit Suggester
It's a module called the Local Exploit Suggester
. We will be using this module for this example, as the Meterpreter shell landed on the IIS APPPOOL\Web
user, which naturally does not have many permissions. Furthermore, running the sysinfo
command shows us that the system is of x86 bit architecture, giving us even more reason to trust the Local Exploit Suggester.
Local Privilege Escalation
Firewall and IDS/IPS Evasion
Here we will see
Endpoint protection
Perimeter protection
Endpoint protection
refers to any localized device or service whose sole purpose is to protect a single host on the network. The host can be a personal computer, a corporate workstation, or a server in a network's De-Militarized Zone (DMZ
).
Endpoint protection usually comes in the form of software packs which include Antivirus Protection
, Antimalware Protection
(this includes bloatware, spyware, adware, scareware, ransomware), Firewall
, and Anti-DDOS
all in one, under the same software package.
Perimeter protection
usually comes in physical or virtualized devices on the network perimeter edge. These edge devices
themselves provide access inside
of the network from the outside
, in other terms, from public
to private
.
Between these two zones, on some occasions, we will also find a third one, called the De-Militarized Zone (DMZ
), which was mentioned previously. This is a lower-security policy level
zone than the inside networks'
one, but with a higher trust level
than the outside zone
, which is the vast Internet.
Last updated