process migration (Linux)

[gabriel-maxx]

I ran these two payloads: linux/x86/meterpreter_reverse_tcp and linux/x86/meterpreter/reverse_tcp

and then I tried to migrate to another process, and then, it says it's not supported, what's going on?

these are the same payloads used here: https://www.rapid7.com/blog/post/2015/01/04/12-days-of-haxmas-meterpreter-migration-now-also-for-linux/

[timwr]

migration is only supported on the native Windows meterpreter currently. It would be possible to add it to the new linux meterpreter (using ptrace?) but it's not done yet. I believe the code from that blog post was depreciated when we switched from the old unstable linux meterpreter: https://github.com/rapid7/meterpreter to mettle: https://github.com/rapid7/mettle
That said, it wasn't a high priority in my opinion. What's your use case for it?

[gabriel-maxx]

migration is only supported on the native Windows meterpreter currently. It would be possible to add it to the new linux meterpreter (using ptrace?) but it's not done yet. I believe the code from that blog post was depreciated when we switched from the old unstable linux meterpreter: https://github.com/rapid7/meterpreter to mettle: https://github.com/rapid7/mettle That said, it wasn't a high priority in my opinion. What's your use case for it?

could you port it using ptrace? I would be so grateful to have such an amazing feature in Linux again...

[gabriel-maxx]

@timwr coming soon?

[timwr]

What's your use case for it?

[gabriel-maxx]

What's your use case for it?

I'll give you 5 reasons, in my opinion:

1: become part of a process and inherit its functions

2: Hiding the process to gain persistence and avoid detection

3: Change the process architecture to run some payloads with the correct architecture

4: I could use this feature on Android too,using aarch64,armle,mipsle,x64/x86

5: Migrate to a more stable process

[gabriel-maxx]

@timwr coming soon?

[nullcult]

What's your use case for it?

Mine would be persistence.