Invoke-Shellcode Issues and Powersploit DIscussion #59
Comments
vinnybod
pushed a commit
that referenced
this issue
Apr 8, 2021
* updated module table with technique and added info for listeners * fixed default return for http/http_com listener * added space between cli tables * fixed listener options table missing headers * added client error handling for invalid logins * added socketio chat/leave check * removed extra table checks for techniques and software
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I have fixed the typo in Invoke-Shellcode that broke the use of custom shellcode but the automated support for reverse_http and reverse_https payloads appear to no longer longer work. Powersploit dropped support for this in Invoke-Shellcode in 2015 with the release of V3.0.0. I have not isolated the exact reason why this no longer works but suspect it has to do with changes in the way metasploit stages the payload.
I suggest we remove the meterpreter payload option in the Invoke-Shellcode module and make Shellcode a required option.
In addition the Powersploit Modules in Empire were never updated to the 3.0 release. This update was mostly a dropping of the metasploit support and modularization of the functions to ensure they are only doing one job. So there is some debate as to whether the change is worthwhile
The text was updated successfully, but these errors were encountered: