TABLE OF CONTENTS This chapter covers some of the more interesting payload options available with the Metasploit Framework (MSF). Payloads are pieces of code that get executed on the target system as part of an exploit attempt. A payload is usually a sequence of assembly instructions, which helps achieve a specific post-exploitation objective, such as adding a new user to the remote system, or launching a command prompt and binding it to a local port. Specifically, we look in depth at the Meterpreter, PassiveX, and Virtual Network Computing (VNC) dynamic link library (DLL) injection payloads. We also look at the Auxiliary module system, which enables fingerprinting, vulnerability scanning, and other reconnaissance activities to be carried out from within the framework. The objective being to link up the results of these scans, and feed them into the exploitation stage, so that more targeted exploits can be executed with a greater probability of success.
When attempting to exploit a remote system, an attacker has a specific objective in mind typically to obtain the command shell of the remote system, and thereby run arbitrary commands on that system. The attacker would also like to do this in as stealthy a manner as possible, as well as evade any Intrusion Detection Systems (IDSes).
If the exploit is successful but the command shell fails to work or is executing in a chroot environment, the attacker's options would be severely limited. This would mean the launching of a new process on the remote system, which would result...
