Adding modules

In this example we will add the following module:

https://www.exploit-db.com/exploits/47229

Update searchsploit db

searchsploit -u

Move to modules/exploits directory

cd .msf4/modules/exploits

Find desired module

searchsploit manageengine opmanager

------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ ---------------------------------
 Exploit Title                                                                                                                                                                                                                                                                            |  Path
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ ---------------------------------
ManageEngine OpManager - Remote Code Execution (Metasploit)                                                                                                                                                                                                                               | java/remote/38221.rb
ManageEngine OpManager / Applications Manager / IT360 - 'FailOverServlet' Multiple Vulnerabilities                                                                                                                                                                                        | multiple/webapps/43894.txt
ManageEngine OpManager / Social IT - Arbitrary File Upload (Metasploit)                                                                                                                                                                                                                   | java/remote/34867.rb
ManageEngine OpManager / Social IT Plus / IT360 - Multiple Vulnerabilities                                                                                                                                                                                                                | jsp/webapps/35209.txt
ManageEngine OpManager / Social IT Plus / IT360 - Multiple Vulnerabilities                                                                                                                                                                                                                | multiple/webapps/43896.txt
ManageEngine OpManager 11.5 - Multiple Vulnerabilities                                                                                                                                                                                                                                    | multiple/webapps/38174.txt
ManageEngine opManager 12.3.150 - Authenticated Code Execution                                                                                                                                                                                                                            | windows/webapps/47255.py
ManageEngine OpManager 12.4x - Privilege Escalation / Remote Command Execution (Metasploit)                                                                                                                                                                                               | multiple/remote/47227.rb
ManageEngine OpManager 12.4x - Unauthenticated Remote Command Execution (Metasploit)                                                                                                                                                                                                      | multiple/remote/47229.rb
OPMANAGER - Blind SQL Injection / XPath Injection                                                                                                                                                                                                                                         | aix/webapps/10372.txt
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ ---------------------------------

Replicate directory structure, so in this case:

mkdir multiple
cd multiple
mkdir remote
cd remote

Copy desired module from local exploitdb path to metasploit directory

cp /usr/share/exploitdb/exploits/multiple/remote/47229.rb .

So path is now: ~/msf4/modules/exploits/multiple/remote/47229.rb

Update local DB

updatedb

Now restart msfconsole, should now show up when searching

msf6 > search opmanager

Matching Modules
================

#  Name                                                   Disclosure Date  Rank       Check  Description
   -  ----                                                   ---------------  ----       -----  -----------
   0  auxiliary/admin/http/manageengine_dir_listing          2015-01-28       normal     No     ManageEngine Multiple Products Arbitrary Directory Listing
   1  auxiliary/admin/http/manageengine_file_download        2015-01-28       normal     No     ManageEngine Multiple Products Arbitrary File Download
   2  exploit/multiple/remote/47227                          2019-08-10       excellent  Yes    ManageEngine OpManager 12.4x - Privilege Escalation / Remote Command Execution
   3  exploit/windows/http/manage_engine_opmanager_rce       2015-09-14       manual     Yes    ManageEngine OpManager Remote Code Execution
   4  exploit/multi/http/opmanager_sumpdu_deserialization    2021-07-26       excellent  Yes    ManageEngine OpManager SumPDU Java Deserialization
   5  exploit/multi/http/opmanager_socialit_file_upload      2014-09-27       excellent  Yes    ManageEngine OpManager and Social IT Arbitrary File Upload
   6  exploit/multiple/remote/47229                          2019-08-10       excellent  Yes    ManageEngine OpManager v12.4x - Unauthenticated Remote Command Execution
   7  post/windows/gather/credentials/redis_desktop_manager                   normal     No     RedisDesktopManager credential gatherer

exploit/multiple/remote/47229 is the module we have just added.

Last updated 10 months ago