metasploit-framework icon indicating copy to clipboard operation
metasploit-framework copied to clipboard

Published 20 hours ago verified publisher icon rapid7

Update cmdstager docs

Open bwatters-r7 opened this issue 2 years ago • 2 comments
trafficstars

While working with @Ayantaker on https://github.com/rapid7/metasploit-framework/pull/17116, I left this explanation for using cmdstagers: https://github.com/rapid7/metasploit-framework/pull/17094#issuecomment-1270496633

They said it was useful, and I was somewhat surprised that we did not talk about using different approaches for the droppers vs cmd payloads , how they differed, and how to get each of them to launch, so I tried to incorporate the comment into our documentation.

bwatters-r7 avatar Dec 16 '22 22:12 bwatters-r7

Should probably take a look at https://github.com/rapid7/metasploit-framework/issues/9209 and see if we can fix all the issues mentioned there. I know a few were fixed earlier but there are a few concerns noted there that may be possible to address in this PR.

gwillcox-r7 avatar Dec 27 '22 20:12 gwillcox-r7

Marking delayed until the comments mentioned above are addressed.

gwillcox-r7 avatar Jan 10 '23 20:01 gwillcox-r7

Marking delayed until the comments mentioned above are addressed.

Looks like this is a first step to improving the docs, will land the intermediate documentation - and it can be iterated on in the future if there's the cycles free

adfoster-r7 avatar Feb 03 '23 13:02 adfoster-r7

Release Notes

Adds additional details on using command stagers

adfoster-r7 avatar Feb 03 '23 13:02 adfoster-r7

Fair point, and yeah I agree on second review that this should have just been landed, thanks for calling me out on that, I'll keep that in mind for next time👍

gwillcox-r7 avatar Feb 03 '23 15:02 gwillcox-r7