metasploit-framework

https://github.com/rapid7/metasploit-framework

Ruby

Metasploit Framework

MetasploitModule#gen_file_dropper

task scheduler is pretty bad at handling binary files and likes to mess up our meterpreter :-(
instead we use a CFML filedropper to embed our payload and execute it.
this also removes the dependancy of using the probe.cfm to execute the file.

Source | Google | Stack overflow

Edit

git clone [email protected]:rapid7/metasploit-framework.git

cd metasploit-framework

open modules/exploits/multi/http/coldfusion_rds_auth_bypass.rb

Contribute

# Make a new branch

git checkout -b -your-name--update-docs-MetasploitModule-gen_file_dropper-for-pr

# Commit to git

git add modules/exploits/multi/http/coldfusion_rds_auth_bypass.rbgit commit -m "better docs for MetasploitModule#gen_file_dropper"

# Open pull request

gem install hub # on a mac you can `brew install hub`

hub fork

git push <your name> -your-name--update-docs-MetasploitModule-gen_file_dropper-for-pr

hub pull-request

# Celebrate!