
Q: Do I need to know how to write shellcode to develop exploits with Metasploit?
A: No.Through either the msfweb interface or msfpayload and msfencode, an
exploit developer can completely avoid having to deal with shellcode besides
cutting and pasting it into the exploit. If an exploit is developed within the
Framework, the exploit developer may never even see the payload.
Q: Do I have to use an encoder on my payload?
A: No. As long as you avoid the bad characters, you can send over any payload
without encoding it.The encoders are there primarily to generate payloads that
avoid bad characters.
Q: Do I have to use the nop generator when integrating an ...