dnrops
/
metasploit-framework
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Updated

This commit is contained in:
rmdavy 2018-06-04 23:02:27 +01:00 committed by GitHub
parent 061bb84a5a
commit b256a99128
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
documentation/modules/auxiliary/multidrop.md
View File

@ -52,25 +52,26 @@ This can be changed using set LHOST 192.168.1.25
Rank: Normal
Provided by:
Richard Davy - secureyourit.co.uk, Lnk Creation Code by Mubix
Richard Davy - secureyourit.co.uk
Lnk Creation Code by Mubix
Basic options:
Name Current Setting Required Description
---- --------------- -------- -----------
FILENAME desktop.ini yes Filename - supports .lnk, .scf, .url, desktop.ini
FILENAME test.url yes Filename - supports .lnk, .scf, .url, desktop.ini
LHOST 192.168.1.19 yes Host listening for incoming SMB/WebDAV traffic
Description:
This module dependent on the given filename extension creates either
a .lnk, .scf, .url, desktop.ini file which includes a reference to
the the specified remote host, causing SMB connections to be
initiated from any user that views the file. Lnk file creation code
taken from module droplnk.rb by Mubix
initiated from any user that views the file.
References:
https://malicious.link/blog/2012/02/11/ms08_068-ms10_046-fun-until-2018
https://malicious.link/post/2012/2012-02-19-developing-the-lnk-metasploit-post-module-with-mona/
msf auxiliary(multidrop) > exploit
[+] desktop.ini stored at /root/.msf4/local/desktop.ini