Integrations Posted on May 29, 2014 (May 3, 2022) Connecting to a Metasploit RPC server on Windows is not supported When a user launches Armitage or Cobalt Strike on Windows and presses Start MSF, they’re presented with a curious error. It states: You must connect Read More
Integrations Posted on May 14, 2014 (November 29, 2022) Meterpreter Kiwi Extension: Golden Ticket HOWTO Mimikatz is a rapidly evolving post-exploitation toolkit by Benjamin Delpy. I call it a post-exploitation toolkit because it has a lot of features, far beyond Read More
Integrations Posted on April 2, 2014 (November 29, 2022) What happens when I type getsystem? Meterpreter’s getsystem command is taken for granted. Type getsystem and magically Meterpreter elevates you from a local administrator to the SYSTEM user. What’s really happening Read More
Integrations Posted on March 27, 2014 (September 26, 2022) Listeners: Cobalt Strike’s Glue Feature Listeners are Cobalt Strike’s abstraction in front of the Metasploit Framework’s payload handlers. A handler is the exploit/multi/handler module. This module sets up a server that Read More
Integrations Posted on February 12, 2014 (May 3, 2022) Modifying Metasploit’s Stager Shellcode If you’ve ever had to change a module in the Metasploit Framework, you know the go to place is the modules/ directory off of the Read More
Integrations Posted on November 26, 2013 (May 3, 2022) Reverse Meterpreter Connect-backs through a Compromised Host <update 03:30pm> I’ve had some feedback that this post describes a concept that is too basic to put into blog form. I can see where this Read More
Integrations Posted on November 15, 2013 (May 3, 2022) Evade Egress Restrictions with Staged Payloads Sometimes, it’s easy to get code execution in a network, but very difficult to egress out of it. When you are an external actor trying Read More
Integrations Posted on October 31, 2013 (May 3, 2022) Getting the Most from Armitage’s Console I have a philosophy. Armitage should make common actions simple and efficient. As soon as you need to break away into an uncommon action, use Read More
Integrations Posted on October 10, 2013 (April 26, 2023) The ACE Problem Solving Method (I use this) The reason I’m in security today is because of the US Air Force’s Advanced Course in Engineering Cyber Security internship program. I turned down an internship at Read More
Integrations Posted on August 29, 2013 (May 3, 2022) How to Inject Shellcode from Java Cobalt Strike’s Java Applet attacks inject shellcode into memory. Injecting into memory is valuable as it helps get past application whitelisting and can help evade Read More
