How To Add Exploit.pm To Metasploit

How To Add Exploit.pm To Metasploit Question

#1 realloader

Corporal

Group: Members
Posts: 164
Joined: 05-December 03

Posted 20 July 2005 - 08:03 AM

I know i can update Metasploit by calling MSFUpdate.
But there are alot of Exploits that i do not find in Metasploit.

How can i add
php_phpbb2_0_15.pm
to Metasploit?

From here:
http://www.milw0rm.com/id.php?id=1113

#2 Killaloop

Master Sergeant

Group: Members
Posts: 677
Joined: 01-January 04

Posted 20 July 2005 - 08:21 AM

realloader, on Jul 20 2005, 04:03 PM, said:

<{POST_SNAPBACK}>

well I would say why don't you read the manual?
or why didn't you try to put the file into the exploits folder?
I guess you have not spent a single minute to figure it out on your own.

#3 realloader

Corporal

Group: Members
Posts: 164
Joined: 05-December 03

Posted 20 July 2005 - 09:45 AM

show me where u have to look!

i dont find any thing with manual!

#4 Killaloop

Master Sergeant

Group: Members
Posts: 677
Joined: 01-January 04

Posted 20 July 2005 - 09:51 AM

realloader, on Jul 20 2005, 05:45 PM, said:

show me where u have to look!

i dont find any thing with manual!

<{POST_SNAPBACK}>

dont have the time for this stuff
as I already said: put the damn thing into the exploits folder of your framework and start it.

#5 realloader

Corporal

Group: Members
Posts: 164
Joined: 05-December 03

Posted 20 July 2005 - 10:07 AM

Thank you very much!

#6 Partizaan

Sergeant First Class

Group: Members
Posts: 367
Joined: 13-February 04

Posted 20 July 2005 - 10:45 AM

Google for 'Security Forest'. Its an free framework with over 2000 ploits.

It has an nice 'ad' feature for own exploits.

#7 Hehe0815

Private First Class

Group: Members
Posts: 76
Joined: 25-January 04

Posted 20 July 2005 - 12:21 PM

if u want to add own metasploit exploits, there is the exploit name in the header of every explopit, useable in metasploit, then u go to bla:\blabla\Metasploit Framework\home\framework\exploits\, there u create a new .pm file with the name u find in the header of the txt, inside u add the code in the txt of the exploit, now its ready for launch!
HF

#8 n.n.p

Private First Class

Group: Members
Posts: 118
Joined: 20-June 05

Posted 21 July 2005 - 10:29 AM

Does metasploit code have to be in perl or does it support multiple languages?

http://silenthack.co.uk
http://smashthestack.org

#9 z0mbi3

Corporal

Group: Members
Posts: 173
Joined: 12-August 03

Posted 22 July 2005 - 09:34 AM

perl

version 3 is going to use ruby i think

#10 recalcitrant

Private

Group: Members
Posts: 9
Joined: 29-March 04

Posted 23 July 2005 - 02:07 AM

If I'm not mistaken, normally file exploit modules that are authored by someone inside of the metasploit project team (in this case 'str0ke <str0ke [at] milw0rm.com> [Artistic/GPL]') are published to the metasploit website and are also availble with msfupdate.bat. I guess they are a little slow on the updates with this one...

#11 jaggudada

Private First Class

Group: Members
Posts: 96
Joined: 02-August 05

Posted 25 February 2006 - 03:34 PM

recalcitrant, on Jul 23 2005, 06:07 PM, said:

:( yeh i did exactly as u said and added in exploits folder .. but when i fired it up in my ms web interface the exploit wont show up Do we have to add something in the payload folder too ??I am confused now..why doesnt it work

~~I dont come with dice-so dont play me~~
http://groups.yahoo....p/blackhatgroup

#12 LittleHacker

Master Sergeant

Group: Members
Posts: 453
Joined: 17-October 04

Posted 26 February 2006 - 03:32 AM

why not using the console ?

Quote

LittleHacker@BlackBox ~
$ msfupdate -m

+ -- --=[ msfupdate v2.5 [revision 1.43][*] Calculating local file checksums, please wait...

[*] No modifications since the last update

LittleHacker@BlackBox ~
$ msfupdate -uxf

+ -- --=[ msfupdate v2.5 [revision 1.43]

[*] Calculating local file checksums, please wait...

[*] Online Update Task Summary

Update: ./exploits/bluecoat_winproxy.pm
Update: ./exploits/eudora_imap.pm
Update: ./exploits/firefox_queryinterface_linux.pm
Update: ./exploits/firefox_queryinterface_osx.pm
Update: ./exploits/ie_xp_pfv_metafile.pm
Update: ./exploits/msmq_deleteobject_ms05_017.pm
Update: ./exploits/phpbb_highlight.pm
Update: ./exploits/winamp_playlist_unc.pm
Update: ./exploits/wmailserver_smtp.pm
Update: ./exploits/wzdftpd_site.pm
Update: ./exploits/ypops_smtp.pm

Continue? (yes or no) > yes

[*] Starting online update of 11 file(s)...

[0001/0011 - 0x000ec0 bytes] ./exploits/bluecoat_winproxy.pm
[0002/0011 - 0x000eb5 bytes] ./exploits/eudora_imap.pm
[0003/0011 - 0x0017e9 bytes] ./exploits/firefox_queryinterface_linux.pm
[0004/0011 - 0x0017ee bytes] ./exploits/firefox_queryinterface_osx.pm
[0005/0011 - 0x002f87 bytes] ./exploits/ie_xp_pfv_metafile.pm
[0006/0011 - 0x001664 bytes] ./exploits/msmq_deleteobject_ms05_017.pm
[0007/0011 - 0x001622 bytes] ./exploits/phpbb_highlight.pm
[0008/0011 - 0x001bf4 bytes] ./exploits/winamp_playlist_unc.pm
[0009/0011 - 0x000a45 bytes] ./exploits/wmailserver_smtp.pm
[0010/0011 - 0x000dde bytes] ./exploits/wzdftpd_site.pm
[0011/0011 - 0x000e8c bytes] ./exploits/ypops_smtp.pm

[*] Regenerating local file database

LittleHacker@BlackBox ~
$

btw as you can see exploits are located in [msf_path]/exploits/
copy them there

Page 1 of 1

You cannot start a new topic
You cannot reply to this topic

Forums: How To Add Exploit.pm To Metasploit - Forums