Windows Interactive Powershell Session, Bind TCP - Metasploit


This page contains detailed information about how to use the payload/windows/powershell_bind_tcp metasploit module. For list of all metasploit modules, visit the Metasploit Module Library.

Table Of Contents
hide

Module Overview

Name: Windows Interactive Powershell Session, Bind TCP
Module: payload/windows/powershell_bind_tcp
Source code: modules/payloads/singles/windows/powershell_bind_tcp.rb
Disclosure date: -
Last modification time: 2021-11-30 07:04:18 +0000
Supported architecture(s): x86
Supported platform(s): Windows
Target service / protocol: -
Target network port(s): -
List of CVEs: -

Listen for a connection and spawn an interactive powershell session

Module Ranking and Traits

Module Ranking:

  • normal: The exploit is otherwise reliable, but depends on a specific version and can't (or doesn't) reliably autodetect. More information about ranking can be found here.

Basic Usage

msf > use payload/windows/powershell_bind_tcp
msf payload(powershell_bind_tcp) > show options
    ... show and set options ...
msf payload(powershell_bind_tcp) > generate

To learn how to generate payload/windows/powershell_bind_tcp with msfvenom, please read this.

Go back to menu.

Msfconsole Usage

Here is how the windows/powershell_bind_tcp payload looks in the msfconsole:

msf6 > use payload/windows/powershell_bind_tcp

msf6 payload(windows/powershell_bind_tcp) > show info

       Name: Windows Interactive Powershell Session, Bind TCP
     Module: payload/windows/powershell_bind_tcp
   Platform: Windows
       Arch: x86
Needs Admin: No
 Total size: 1822
       Rank: Normal

Provided by:
  Ben Turner
  Dave Hardy
  vlad902 <[email protected]>
  sf <[email protected]>

Basic options:
Name          Current Setting  Required  Description
----          ---------------  --------  -----------
EXITFUNC      process          yes       Exit technique (Accepted: '', seh, thread, process, none)
LOAD_MODULES                   no        A list of powershell modules separated by a comma to download over the web
LPORT         4444             yes       The listen port
RHOST                          no        The target address

Description:
  Listen for a connection and spawn an interactive powershell session

Module Options

This is a complete list of options available in the windows/powershell_bind_tcp payload:

msf6 payload(windows/powershell_bind_tcp) > show options

Module options (payload/windows/powershell_bind_tcp):

   Name          Current Setting  Required  Description
   ----          ---------------  --------  -----------
   EXITFUNC      process          yes       Exit technique (Accepted: '', seh, thread, process, none)
   LOAD_MODULES                   no        A list of powershell modules separated by a comma to download over the web
   LPORT         4444             yes       The listen port
   RHOST                          no        The target address

Advanced Options

Here is a complete list of advanced options supported by the windows/powershell_bind_tcp payload:

msf6 payload(windows/powershell_bind_tcp) > show advanced

Module advanced options (payload/windows/powershell_bind_tcp):

   Name                Current Setting  Required  Description
   ----                ---------------  --------  -----------
   PrependMigrate      false            yes       Spawns and runs shellcode in new process
   PrependMigrateProc                   no        Process to spawn and run shellcode in
   VERBOSE             false            no        Enable detailed status messages
   WORKSPACE                            no        Specify the workspace for this module

Go back to menu.

References

See Also

Check also the following modules related to this module:

Authors

  • Ben Turner
  • Dave Hardy
  • vlad902
  • sf

Version

This page has been produced using Metasploit Framework version 6.1.24-dev. For more modules, visit the Metasploit Module Library.

Go back to menu.