module

HTTPS Fetch, Linux Command Shell, Bind TCP Random Port Inline

Disclosed	Created
N/A	Jun 15, 2023

Disclosed

N/A

Created

Jun 15, 2023

Description

Fetch and execute an x86 payload from an HTTPS server.

Listen for a connection in a random port and spawn a command shell.
Use nmap to discover the open port: 'nmap -sS target -p-'.

Authors

Brendan Watters
Spencer McIntyre
Geyslan G. Bem [email protected]
Aleh Boitsau [email protected]

Platform

Linux

Architectures

cmd

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


    msf > use payload/cmd/linux/https/x86/shell_bind_tcp_random_port
    msf payload(shell_bind_tcp_random_port) > show actions
        ...actions...
    msf payload(shell_bind_tcp_random_port) > set ACTION < action-name >
    msf payload(shell_bind_tcp_random_port) > show options
        ...show and set options...
    msf payload(shell_bind_tcp_random_port) > run

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today