- Now that we have our PHP Hop ready, we can use the windows/meterpreter/reverse_hop_http payload and create a binary with which we can compromise the target machine:
- After creating the payload, upload it to the target and start a listener using the Generic Payload Handler exploit module:
As soon as the victim runs the payload, we get a new session on the target via our Hop relay.
Some Metasploit modules, because of updates and changes in the framework, may have a slightly different behavior, some might even work more accurately ...