I know how to create payloads using Metasploit and then script a AutoRun script,
ID: 655816 • Letter: I
Question
I know how to create payloads using Metasploit and then script a AutoRun script, so when the victim machine connects back to my Kali Server it execute some actions. Works sweet!
What I wanted to do is create a payload weaponized with actions (Create process, change firewall rules, check VM, etc...) so I can run actions without the need to connect back to my Kali host.
Do you know if this is possible with Metasploit or Meterpreter? In case it isn't possible, is there is any app I can use to create standalone payloads?
This is for a POC and the intention is to test effectiveness of some sandboxing solutions.
Explanation / Answer
Have no real experience, but how 'bout this from the Metasploit docs:
Staged Stager: payloads work in conjunction with stage payloads in order to perform a specific task. A stager establishes a communication channel between the attacker and the victim and reads in a stage payload to execute on the remote host.
But I can't figure out if you need to be connected to the victim or not. It either executes the payloads in given order based on how the previous stage executed locally, or the decision is made on your machine - and therefore you have to be connected.