|Main Archive Page > Month Archives > metasploit-framework archives|
problems with AV detection and perform better than the existing
It uses some new concepts explained in a blog post and in more detail
in the latest Issue of the HITB magazine:
The code is available here: http://github.com/svent/jsidle
Patches for Metasploit: http://github.com/svent/jsidle/tree/master/metasploit/
I patched two existing exploit modules to show the usage, the aurora
exploit for web-based ones and the adobe_geticon exploit to show the
usage for PDF files.
(using static analysis). Virustotal detection for the PDF dropped from
17/41 to 9/41 - as obfuscation is not that common in PDF files, some
scanners still flag the file as suspicious using a generic detection.