msfvenom
Listing Payloads
Staged vs Stageless payloads
windows/meterpreter/reverse_tcp
vs windows/meterpreter_reverse_tcp
The former is staged, after the architecture each /
is a stage. The latter doesn't have a /
after the meterpreter part, so it's stageless
Creating a payload
-p
build payload-f
output format
List options
Basic msfvenom
One can also use the -a to specify the architecture or the --platform Listing
Common params when creating a shellcode
Encoding
-b
for bad bytes-e
encoding
Antivirus evasion
Hiding payload inside of legitimate executables
-i
iterations of encoding-k
continue with normal execution-x
input file to embed the payload into-o
output file
Archiving
use multiple zip/rar/compression layers with passwords to evade detection on the network
Packing
A list of popular packer software:
Also see PolyPack.
Last updated