Metasploit mailing list archives

News from Metasploit 4.

From: Richard Miles <richard.k.miles () googlemail com>
Date: Thu, 25 Aug 2011 17:42:45 -0500

Hi

I friend of mine was talking about some great improvements at
Metasploit 4, I checked the blog and it talks very briefly about it,
what more called my attention is that reverse_http and reverse_https
was updated and meterpreter scripts / resources too.

I have 3 questions...

1 - The new reverse_http and reverse_https now are as good as passiveX
was? I mean, we can use it completely over http or https (even the
stager) and the payload is smart enough to get proxy IP and port from
browser and re-use the same credential (in case that proxy require
auth)?

2 - Before work with AutoRunScript with meterpreter was not that
great, for example, I never could make a script like this work:

screenshot
use priv
getsystem
sysinfo
getuid
migrate -f
run migrate -f
run hashdump
run scraper
rev2self

The only thing that worked was sysinfo and getuid. The new version
provides a way to automate this post exploitation commands in a easy
and reliable way? How?

3 - What are the other great news from Metasploit 4?

Thanks
_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework

Current thread:

News from Metasploit 4. Richard Miles (Aug 25)
- Re: News from Metasploit 4. Patrick Webster (Aug 25)
  - Re: News from Metasploit 4. Richard Miles (Aug 26)
    - Re: News from Metasploit 4. egypt (Aug 26)
    - Re: News from Metasploit 4. Richard Miles (Aug 26)
    - Message not available
    - Re: News from Metasploit 4. Richard Miles (Aug 27)
    - Message not available
    - Re: News from Metasploit 4. Richard Miles (Aug 27)
- Re: News from Metasploit 4. HD Moore (Aug 26)
  - Re: News from Metasploit 4. Richard Miles (Aug 26)
    - Message not available
    - Re: News from Metasploit 4. Richard Miles (Aug 27)
    - Re: News from Metasploit 4. Richard Miles (Aug 27)

(Thread continues...)