Skip to Main Content
August 24, 2010

SET v0.6.1 - Metasploit DLL Hijack Demo

Written by David Kennedy
Security Testing & Analysis Social Engineering
Here is a quick demo of the newly committed Metasploit DLL Hijack exploit that was just incorporated into SET. By browsing a website, it launches a fileshare and based on what filetypes are vulnerable and if clicked on gets you a shell. By default p7c wab ppt and pptx is susceptible to attack. Note that p7c and wab does not work on Windows 7. The Metasploit team rocks!!!