MSFPayload and MSFEncode Combination Used

This article is explanation of how to use MSFPAYLOAD and MASENCODE, I'll explain one by one that tools in Metasploit, here I will begin with MSFPayload.

Msfpayload is tools of Metasploit, included in MSF3 to use it go to /opt/metasploit/msf3/ and run ./msfpayload. here is example of it

This tools have ability to load payload for use exploitation based vulnerable on target's system, with -l option is will show payload contain in msf3 payload to ready to use later

Msfencode is tools of Metasploit, same with Msfpayload that tools is resident in MSF3 directory, this tool have function to encode some application or file to be diferent code but have same function on opcode, that meaning is for manipulation security system like firewall or antivirus detection of malware with malfunction, for example if attacker use this tools to encode virus or trojan has infected into pdf or anything file when that file enterance in target firewall and antivirus will confirm that file is normal pdf, but even if that pdf file execute to open that will generate or calling the trojan or virus included in pdf data and that condition the pc has exploitation with that file, for exaple to use the combination with the 2 of tools I'll show here

First step we need to definetly the payload will to use in MSFPAYLOAD, here I use reverse_tcp, after that use and set LHOST, LHOST is fill with Attacker's IP like here

and that function is mean payload will loaded in file and that step will continue to MSFENCODE, in MSFENCODE we need to choose file will encoded and injected with payload from MSFPAYLOAD like here I use notepad.exe as file will injected

Full combination use is like here

That I use encoder SHIKATA GA NAI and 5 times encoded by, after that press enter to generate and inject payload into file notepad.exe after finish inject sent the file to target, and if file execute in target's system.