How to Perform Browser Autopwn using Metasploit

Let us discuss about performing browser autopwn that how this module works. This auxiliary module used for performing client-side attacks. Now we need to explore how this module works. Following are steps of browser autopwn.

  • Attacker/Penetration Tester executes the browser_autopwn auxiliary module.

  • Web server is started (on the attacker's system), which hosts a payload which is accessible over a specific crafted URL.

  • Attacker sends specially generated URL to his/her victim.

  • When victim tries to open URL, and the payload gets downloaded on his system.

  • If the victim's browser is vulnerable, the exploit will be successful and the attacker gets a meterpreter shell.

First launch Metasploit using msfconsole command then select the browser_autopwn module by entering the use auxiliary/server/browser_autopwn command. Learn bypassing antivirus programs here.

Then, configure the value of the LHOST variable and run the auxiliary module as you can see in the following screenshot:

browser autopwn

After Launching the browser autopwn auxiliary module it will create many different instances of exploit/payload combinations as the victim might be using any kind of browser:

browser autopwn

When our victim opened up an Internet Explorer/browser and tried to hit the malicious URL (that we setup using the browser_autopwn auxiliary module) and we will get a meterpreter shell. The ultimate output is shown below.

browser autopwn

Thanks for reading now let me recommend you some other practical guides about penetration testing of Remote Access Protocols, Remote Desktop ProtocolSSH Network Protocol, Network RoutersWordpress website using WPSeku,



AC Milan,26,Arsenal,33,Atalanta,31,Atletico Madrid,33,Barcelona,44,Bayern München,27,Bundesliga,98,Business,1,Chelsea,42,Copa America,4,Coronavirus,2,Cristiano Ronaldo,32,Dortmund,23,Ethical Hacking,46,Euro 2020,16,Exploitation,35,FA Cup,2,Featured,958,Football,971,Footprinting,29,Google Adsense,2,Inter Milan,26,Juventus,44,Kali Linux,39,Kali NetHunter,3,LaLiga,163,Lazio,26,Leicester City,23,Ligue 1,95,Liverpool,45,Lyon,11,Make Money,3,Manchester City,55,Manchester United,49,Messi,21,Metasploit,1,Napoli,18,Offensive Security,17,Penetration Testing,15,Politics,2,Post Exploitation,19,Premier League,256,PSG,25,Real Madrid,47,Roma,12,Search Engine Optimization,4,Serie A,137,Sevilla,19,Sports,942,Technology,36,Tips,16,Tottenham Hotspur,33,Trending,1186,UEFA Champions League,126,UEFA Europa League,18,UEFA Nations League,6,United States,1,Windows,7,World Cup,3,World News,7,
My Hack Stuff: How to Perform Browser Autopwn using Metasploit
How to Perform Browser Autopwn using Metasploit
My Hack Stuff
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share to a social network STEP 2: Click the link on your social network Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy Table of Content