Ideas

postmodern edited this page Mar 31, 2013 · 6 revisions
Clone this wiki locally
  • Exploit Tunneling: hook all Network helper methods, File, system, popen, etc, to allow Exploits to execute through the Ronin::PostExploitation APIs of other Exploits/Payloads.
  • Embedded Ruby Payload: Write a C/C++ Payload that has mruby embedded within. This payload could accept method calls over an RPC like protocol and even load Ruby code over the network. Please see badger as a pre-mruby attempt.
  • Java Payload: Write a Java payload which can execute POSIX methods issued by the PostExploitation API via the RPC payload helper. The Java Payload should provide TCP Server, TCP connect-back and HTTP interfaces. The RPC helper issues commands as Base64 encoded JSON Hashes. See the Ruby RPC Payload as an example.