Results 1 to 3 of 3

Thread: reverse_tcp & active X

  1. #1
    Junior Member
    Join Date
    Jun 2009
    Posts
    47

    Default reverse_tcp & active X

    hi,

    at the moment i use the below executable to connect back to me. but this would have to be sent via an email or netcat or some other way

    ./msfconsole/meterpreter/reverse_tcp X > test.exe

    someone said that it is possible to use a reverse_http and some how transfer it as an active x

    is this possible if so how?

  2. #2
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default Re: reverse_tcp & active X

    The reverse_http payloads USE an ActiveX control - PassiveX - but you cant really transfer it to a victim host in that format and then expect it to run. You CAN however create a reverse_http payload as an executable and send that to your victim host. When the executable runs and connects back to a Metasploit handler configured for PassiveX, that handler will then serve up the passivex.dll ActiveX object to the remote system, which will then install it as an addon to IE (dependant on your IE version).

    Its possible to do an install of the passivex.dll ActiveX object locally as well if you have reason to do this (because a content filtering proxy sits between your Metsploit system and the victim system for example), however you have to do it manually because it's not supported directly in Metasploit. Im in the process of writing up something about this and I'll post a link here when Im done if you're interested.
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

  3. #3
    Junior Member
    Join Date
    Jun 2009
    Posts
    47

    Default Re: reverse_tcp & active X

    hi thanks for your reply,

    so i can create the reverse_http payload as an executable. i am trying to figure out the best way to transfer it over so it can connect back to me. i think this way would be the best as i cant think of any other ways to without the viten asking to many question.

    if you could post that link when you done it would really appriciat it
    thanks

Similar Threads

  1. Need help with windows/meterpreter/reverse_tcp
    By lifeisamalfunction in forum OLD BackTrack 4 General Support
    Replies: 1
    Last Post: 01-22-2010, 03:04 PM
  2. windows/shell/reverse_tcp detected by McAfee Ent 8
    By dud29 in forum OLD Pentesting
    Replies: 0
    Last Post: 10-08-2009, 06:43 PM
  3. msfpayload uploadexec/reverse_tcp vista
    By BigMac in forum OLD Pentesting
    Replies: 1
    Last Post: 01-05-2009, 08:21 AM
  4. Active Directory Security
    By elliot.hacker in forum OLD BackTrack v2.0 Final
    Replies: 0
    Last Post: 03-14-2007, 04:02 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •