module

TFTP Fetch, Linux Command Shell, Bind TCP Random Port Inline

Disclosed
N/A
Created
2023-06-15

Description

Fetch and execute a x86 payload from a TFTP server.

Listen for a connection in a random port and spawn a command shell.
Use nmap to discover the open port: 'nmap -sS target -p-'.

Authors

Brendan Watters
Spencer McIntyre
Geyslan G. Bem geyslan@gmail.com
Aleh Boitsau infosecurity@ya.ru

Platform

Linux

Architectures

cmd

Module Options

To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:


msf > use payload/cmd/linux/tftp/x86/shell_bind_tcp_random_port
msf payload(shell_bind_tcp_random_port) > show actions
...actions...
msf payload(shell_bind_tcp_random_port) > set ACTION < action-name >
msf payload(shell_bind_tcp_random_port) > show options
...show and set options...
msf payload(shell_bind_tcp_random_port) > run

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.