Any way to manually exploit

[Green-Wolf]

Hi,

I was wondering if there is a way to pull up 'msfconsole' in a terminal app with csploit installed on an android device?

Also is there any way to manually search for an exploit and set it up? For example today I was testing csploit on a windows xp SP3 VM, and none of the 'suggest exploits' were MS08-067-netapi, which would have worked, but i couldn't use it because it wasn't on the suggested list.

Are either of these possible now/potential future features, As someone in the pen testing field if either/both of these features were done/possible it would seriously help in the field.

Sorry if this is not the right place for this! Wasn't sure how else to contact you. (Hope its ok because i included the ms08 not being suggest which is a bug!)

Many thanks for a great app already!

[IwraStudios]

@Green-Wolf this is the right place for it, a bug or improvement is welcome to the github issues

[Green-Wolf]

@IwraStudios Alright, good to know thanks. Yeah so MS08-067 not showing up for Windows XP SP3 fresh install is the bug.

A really good improvement would be to be able to search msf for exploits within cSploit, so you can use other apps, then come in to use an exploit you know will work. It would turn it into an app that is really useful for professionals!

If this could be expanded to when you install everything when you first start the app, that it lets you also access it via a terminal that would be amazing too!

[p4cm4n]

MS08-067 not showing up for Windows XP SP3

If i remember correctly SP2 patched it ;) I always launched that exploit with "SP0" machines

The feature is VERY nice indeed BTW

[Green-Wolf]

MS08-067 was patched with SP4, SP2 patched the MS03-026 dcom vulnerability.

https://www.rapid7.com/db/modules/exploit/windows/smb/ms08_067_netapi
https://www.rapid7.com/db/modules/exploit/windows/dcerpc/ms03_026_dcom

[p4cm4n]

MS08-067 was patched with SP4, SP2 patched the MS03-026 dcom vulnerability.

my bad 👍