Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

New post exploitation module: 'Install OpenSSH for Windows' #12807

Merged
merged 2 commits into from Feb 3, 2020

Conversation

@bluesentinelsec
Copy link
Contributor

bluesentinelsec commented Jan 10, 2020

This module installs OpenSSH server and client for Windows using PowerShell.
SSH on Windows can provide pentesters persistent access to a secure interactive terminal, interactive filesystem access, and port forwarding over SSH.

Verification

List the steps needed to make sure this thing works

  • Start msfconsole
  • Obtain a meterpreter or shell session
  • use post/windows/manage/install_ssh
  • set session <session #>
  • run
  • Open a new terminal and test SSH access: ssh user@10.10.10.10

See supporting documentation for additional details:
metasploit-framework/documentation/modules/post/windows/manage/install_ssh.md

@bwatters-r7

This comment has been minimized.

Copy link
Contributor

bwatters-r7 commented Jan 13, 2020

I like it, but I'm curious if this should be a persistence module? Anybody else have thoughts?

@h00die

This comment has been minimized.

Copy link
Contributor

h00die commented Jan 13, 2020

I'd have trouble calling it a persistence module since it's just installing a service. It didn't add a backdoor cred (or ssh key, like the linux ssh persistence module does), or put in a backdoored executable, or something else like that.

@wvu-r7

This comment has been minimized.

Copy link
Member

wvu-r7 commented Jan 14, 2020

Agreed, this is in the right place.

@dwelch-r7 dwelch-r7 self-assigned this Jan 27, 2020
dwelch-r7 added a commit that referenced this pull request Feb 3, 2020
@dwelch-r7 dwelch-r7 merged commit 5d7c50e into rapid7:master Feb 3, 2020
3 checks passed
3 checks passed
Metasploit Automation - Sanity Test Execution Successfully completed all tests.
Details
Metasploit Automation - Test Execution Successfully completed all tests.
Details
continuous-integration/travis-ci/pr The Travis CI build passed
Details
@dwelch-r7

This comment has been minimized.

Copy link
Contributor

dwelch-r7 commented Feb 3, 2020

Release Notes

Adds a post module for installing the OpenSSH service on Windows

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked issues

Successfully merging this pull request may close these issues.

None yet

7 participants
You can’t perform that action at this time.