Search: Advanced search
Please enter a keyword or ID
How to run a multibrowser exploit through the INJECT-HTML-FILE rule on TNI
A closer explanation for multibrowser exploit usage with TNI.
!!! ⇒ If some of the above requirements are not met, the agent will not be deployed correctly (while the website will still be correctly displayed). No alert message is displayed upon accessing the exploiting website, no user interaction is required but browsing the provided URL.
The INJECT-HTML-FILE is a rule that can be used to infect a target through an exploit for Windows:
!!! ⇒ If the exploit is successful, the agent will start after the next logon or reboot of the system. All the exploits are one-shot: the provided URL will try to exploit only the first user that visits the page with a compatible browser, all subsequent visitors won't be served any exploit code.
!!! ⇒ The exploit will be available only for a limited period of time; after 7 days it will automatically deactivate itself.