Davy Douhine
Pentest
For those who missed that, stageless meterpreter now works with user proxy settings and that rocks !
Why ?
Standard delivery of payloads with metasploit uses a (small) stager that connects to metasploit handler to download and execute the stage (the final payload).
It works most of the time but when you try to establish a meterpreter session through a web proxy with anti-malware inspection and/or a restrictive configuration (e.g: do not allow Portable Executable download) it fails because the proxy blocks the download of the stage (which contains metsrv, stdapi and priv libraries). Annoying when your target is on a local network and has a single way out: the corporate proxy.
In this case, stageless aka single aka inline is the way to go !
It contains everything to start a session but enough talking, let’s make one.
