android-hackhackin/msfvenom/payload_options/cmd-linux-https-x86-read_file.txt

       Name: HTTPS Fetch, Linux Read File
     Module: payload/cmd/linux/https/x86/read_file
   Platform: Linux
       Arch: cmd
Needs Admin: No
 Total size: 116
       Rank: Normal

Provided by:
    Brendan Watters
    Spencer McIntyre
    hal

Basic options:
Name              Current Setting  Required  Description
----              ---------------  --------  -----------
FD                1                yes       The file descriptor to write output to
FETCH_CHECK_CERT  false            yes       Check SSL certificate
FETCH_COMMAND     CURL             yes       Command to fetch payload (Accepted: CURL, FTP, TFTP, TNFTP, WGET)
FETCH_DELETE      false            yes       Attempt to delete the binary after execution
FETCH_FILELESS    none             yes       Attempt to run payload without touching disk by using anonymous handles, requires Linux ≥3.17 (for Python variant also Python ≥3.8 (Accepted: none, bash, python3.8+)
FETCH_SRVHOST                      yes       Local IP to use for serving payload
FETCH_SRVPORT     8080             yes       Local port to use for serving payload
FETCH_URIPATH                      no        Local URI to use for serving payload
PATH                               yes       The file path to read


When FETCH_COMMAND is one of CURL,WGET:

Name        Current Setting  Required  Description
----        ---------------  --------  -----------
FETCH_PIPE  false            yes       Host both the binary payload and the command so it can be piped directly to the shell.


When FETCH_FILELESS is none:

Name                Current Setting  Required  Description
----                ---------------  --------  -----------
FETCH_FILENAME      kkoxgRfIJmAi     no        Name to use on remote system when storing payload; cannot contain spaces or slashes
FETCH_WRITABLE_DIR  ./               yes       Remote writable dir to store payload; cannot contain spaces

Description:
    Fetch and execute an x86 payload from an HTTPS server.
    Read up to 4096 bytes from the local file system and write it back out to the specified file descriptor


    Name                      Current Setting  Required  Description
    ----                      ---------------  --------  -----------
    AppendExit                false            no        Prepend a stub that will break out of a chroot (includes setreuid to root)
    EXE::Custom                                no        Use custom exe instead of automatically generating a payload exe
    EXE::EICAR                false            no        Generate an EICAR file instead of regular payload exe
    EXE::FallBack             false            no        Use the default template in case the specified one is missing
    EXE::Inject               false            no        Set to preserve the original EXE function
    EXE::OldMethod            false            no        Set to use the substitution EXE generation method.
    EXE::Path                                  no        The directory in which to look for the executable template
    EXE::Template                              no        The executable template file name.
    FetchHandlerDisable       false            yes       Disable fetch handler
    FetchHttpServerName       Apache           yes       Fetch HTTP server name
    FetchListenerBindAddress                   no        The specific IP address to bind to to serve the payload if different from FETCH_SRVHOST
    FetchListenerBindPort                      no        The port to bind to if different from FETCH_SRVPORT
    FetchSSLCert                               no        Path to a custom SSL certificate (default is randomly generated)
    FetchSSLCipher                             no        String for SSL cipher spec - "DHE-RSA-AES256-SHA" or "ADH"
    FetchSSLCompression       false            no        Enable SSL/TLS-level compression
    FetchSSLVersion           Auto             yes       Specify the version of SSL/TLS to be used (Auto, TLS and SSL23 are auto-negotiate) (Accepted: Auto, TLS, SSL23, SSL3, TLS1, TLS1.1, TLS1.2)
    MSI::Custom                                no        Use custom msi instead of automatically generating a payload msi
    MSI::EICAR                false            no        Generate an EICAR file instead of regular payload msi
    MSI::Path                                  no        The directory in which to look for the msi template
    MSI::Template                              no        The msi template file name
    MSI::UAC                  false            no        Create an MSI with a UAC prompt (elevation to SYSTEM if accepted)
    PrependChrootBreak        false            no        Prepend a stub that will break out of a chroot (includes setreuid to root)
    PrependFork               false            no        Prepend a stub that starts the payload in its own process via fork
    PrependSetgid             false            no        Prepend a stub that executes the setgid(0) system call
    PrependSetregid           false            no        Prepend a stub that executes the setregid(0, 0) system call
    PrependSetresgid          false            no        Prepend a stub that executes the setresgid(0, 0, 0) system call
    PrependSetresuid          false            no        Prepend a stub that executes the setresuid(0, 0, 0) system call
    PrependSetreuid           false            no        Prepend a stub that executes the setreuid(0, 0) system call
    PrependSetuid             false            no        Prepend a stub that executes the setuid(0) system call
    VERBOSE                   false            no        Enable detailed status messages
    WORKSPACE                                  no        Specify the workspace for this module