是否有任何默认负载(如果未明确设置)在Metasploit中为漏洞利用执行?
答案 0 :(得分:0)
可以找到答案here:
There is a preference list that Metasploit uses to select a payload if there isn't one set for the exploit. Here's the list, sorted by the order in which they will be selected:
windows/meterpreter/reverse_tcp
java/meterpreter/reverse_tcp
php/meterpreter/reverse_tcp
php/meterpreter_reverse_tcp
ruby/shell_reverse_tcp
cmd/unix/interact
cmd/unix/reverse
cmd/unix/reverse_perl
cmd/unix/reverse_netcat_gaping
windows/meterpreter/reverse_nonx_tcp
windows/meterpreter/reverse_ord_tcp
windows/shell/reverse_tcp
generic/shell_reverse_tcp