转几个ShellcodeLoader

refer:https://github.com/VeroFess/shellcode_loader/blob/master/loader.c

继续阅读转几个ShellcodeLoader

msf persist免杀

persist调用
/usr/local/share/metasploit-framework/modules/exploits/windows/local/persistence.rb

::Msf::Util::EXE.to_exe_vbs 来自 /usr/local/share/metasploit-framework/lib/msf/util/exe.rb

to_exe.vbs.template 来自 /usr/local/share/metasploit-framework/data/templates/scripts/to_exe.vbs.template

然后,各种变形混淆吧

msf tips: session is not valid and will be closed

本地可绑定IP与外网IP不一致时
LHOST LPORT用来帮助信标找到服务器
ReverseListenerBindHost 是绑定地址
另外需要关闭AutoVerifySession(原因未知)

问题:
https://github.com/rapid7/metasploit-framework/issues/6799
参见:
https://github.com/rapid7/metasploit-framework/wiki/Debugging-Dead-Meterpreter-Sessions
继续阅读msf tips: session is not valid and will be closed

pyq5开发环境部署

1.eric IDE开发环境
http://eric-ide.python-projects.org/eric-download.html
Installation using PyQt5 wheels

Installing eric6 and its pre-requisites is easy using the PyQt5 Python wheels. In order to have access to the suite of Qt tools and documentation it is recommended to install the Qt development environment because these tools are not part of the PyQt5 wheels.

Download the Qt online installer from the Qt download site.
Install Qt by executing the installer.
Install the eric6 pre-requisites (PyQt, sip and QScintilla) by entering this command in a shell / command window:
pip install qscintilla
or
pip3 install qscintilla
This will install QScintilla and all dependencies, which are PyQt5 and sip.
Install eric6 and configure the path to the Qt tools on the Qt page of the configuration dialog.
Once the eric6 IDE is started the Qt documentation may be loaded into the eric web browser via the Settings ➡ Mange Qt Help Documents menu entry. Note that the documentation (Python/Qt/PyQt) is available in QtHelp format as of November 2016 as documentation plug-ins. In order to use this feature, eric 16.11 or newer needs to be installed.
继续阅读pyq5开发环境部署

MacOS安装Metasploit报错tips

ruby的pg库报错:
ARCHFLAGS=”-arch x86_64″ bundle install

rb版本
rbenv解决,msf建议的rb版本去github看

Nokogiri 报错
http://stackoverflow.com/questions/24091869/installing-nokogiri-on-osx-10-10-yosemite
先安装
brew tap homebrew/dupes
brew install libxml2 libxslt
brew install libiconv
然后
gem install nokogiri -v ‘1.6.8.1’ — –with-iconv-dir=/usr/local/Cellar/libiconv/1.14/ –use-system-libraries=true –with-xml2-include=/Applications/Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/usr/include/libxml2/

postgresql启动不了、连不上
原因是9.5升9.6数据库文件不兼容
brew uninstall postgresql
删除/usr/local/var/postgres/
重新安装

菜刀各版本MD5

文件: caidao-20100928.exe

大小: 200192 字节

MD5: C05D44DBE353525F492208D891B53875

文件: caidao-20111116.exe

大小: 220672 字节

MD5: 5001EF50C7E869253A7C152A638EAB8A

文件: caidao-20141213.exe

大小: 220160 字节

MD5: 4B4A956B9C7DC734F339FA05E4C2A990

20160622 – acaf6564637ba97f73297b0096c2994c

20160620 – ac86066ffd58779f4c0db5030574b0cb