I have been using the patched version of Invoke-ReflectivePEInjection (available here) and I can successfully run calc.exe just fine.
However, if I try a meterpreter payload, meterpreter will successfully connect to msfconsole for a split second before the powershell task exits.
So far I have tried:
Inject into something like explorer -- not possible as meterpreter as it is not compiled with ASLR.
Changing the EXITFUNC to meterpreter
Using windows/x64/meterpreter/reverse_tcp (Reflective Injection x64)
Using windows/x64/meterpreter_reverse_tcp (regular -- inline reverse tcp x64)
Hello --
I have been using the patched version of Invoke-ReflectivePEInjection (available here) and I can successfully run calc.exe just fine.
However, if I try a meterpreter payload, meterpreter will successfully connect to msfconsole for a split second before the powershell task exits.
So far I have tried: Inject into something like explorer -- not possible as meterpreter as it is not compiled with ASLR. Changing the EXITFUNC to meterpreter Using windows/x64/meterpreter/reverse_tcp (Reflective Injection x64) Using windows/x64/meterpreter_reverse_tcp (regular -- inline reverse tcp x64)
Here are the commands I am using: