MSF eXploit Builder – Free Win32 Exploit Development Platform

Outsmart Malicious Hackers


The MSF eXploit Builder (MSF-XB) is a free win32 application (GUI) that wants to be an Exploit Development Platform. The main goal is to speed up the exploit development process, this is accomplished by using the powerful functionalities and neat design of The Metasploit Framework.

MSF eXploit Builder - Free Win32 Exploit Development Platform


MSF-XB automatically generates MSF compliants exploits modules.

What is an Exploit

An exploit (from the English verb to exploit, meaning “to use something to one’s own advantage”) is a piece of software, a chunk of data, or a sequence of commands that takes advantage of a bug or vulnerability to cause unintended or unanticipated behavior to occur on computer software, hardware, or something electronic (usually computerized). Such behavior frequently includes things like gaining control of a computer system, allowing privilege escalation, or a denial-of-service (DoS or related DDoS) attack.

From: Wiki

MSF Exploit Builder Development Platform

The MSF-XB package also includes for your convenience:

Fuzzers

  • TAOF, The Art Of Fuzzing v0.3.2
  • ProxyFuzz v0.1, Rodrigo Marcos
  • FileFuzz v1.0.2510.28439, iDefense
  • FTPfuzz v1.0, Infigo
  • WinFuzz v1.0.0.1, Fakehalo

Handy Tools

  • Findjmp2, Class101
  • branchseeker
  • Faultmon
  • mycrc
  • Sysinternals (Microsoft) PStools
  • wget.exe, GNU
  • xCmd (remotexec clone)
  • nc.exe
  • A local database of opcodes/return addresses (Cross-platforms, 10 locales, fast and reverse queries)
  • An ASCII table
  • A lot of converters (Ascii, Hex, Byte, Unicode …)
  • Malcode Analyst Pack v0.2
  • Process Stalker, iDefense

MSF Exploit Builder Requirements

  • Please edit and customize the MSF-XB.INI file
  • MSF-XB requires the Metasploit Framework installed to work properly (http://www.metasploit.com ): Version 3 is recommended
  • MSF-XB requires a debugger to be installed (Immunity Debugger)

You can download MSF eXploit Builder here:

MSF-XB.EXE (No longer Available) (84Mb)

MD5 41e83b8cb8d60d689bff191eb7842fc1
SHA1 1cb0e457c9fa59da8f147a96afb9c1a056a4e655

Posted in: Exploits/Vulnerabilities, Hacking Tools, Windows Hacking

, , , ,


Latest Posts:


BootStomp - Find Bootloader Vulnerabilities BootStomp – Find Android Bootloader Vulnerabilities
BootStomp is a Python-based tool, with Docker support that helps you find two different classes of bootloader vulnerabilities and bugs.
Google Chrome Marking ALL Non-HTTPS Sites Insecure July 2018 Google Chrome Marking ALL Non-HTTPS Sites Insecure July 2018
Google is ramping up its campaign against HTTP only sites and is going to mark ALL Non-HTTPS sites insecure in July 2018 with the release of Chrome 68.
altdns - Subdomain Recon Tool With Permutation Generation altdns – Subdomain Recon Tool With Permutation Generation
Altdns is a subdomain recon tool in Python that allows for the discovery of subdomains that conform to patterns. The tool takes in words that could be present in subdomains under a domain (such as test, dev, staging) as well as takes in a list of subdomains that you know of.
0-Day Flash Vulnerability Exploited In The Wild 0-Day Flash Vulnerability Exploited In The Wild
So another 0-Day Flash Vulnerability is being exploited in the Wild, a previously unknown flaw which has been labelled CVE-2018-4878 and it affects 28.0.0.137 and earlier versions
dorkbot - Command-Line Tool For Google Dorking dorkbot – Command-Line Tool For Google Dorking
dorkbot is a modular command-line tool for Google dorking, which is performing vulnerability scans against a set of web pages returned by Google search queries in a given Google Custom Search Engine.
USBPcap - USB Packet Capture For Windows USBPcap – USB Packet Capture For Windows
USBPcap is an open-source USB Packet Capture tool for Windows that can be used together with Wireshark in order to analyse USB traffic without using a Virtual Machine.


7 Responses to MSF eXploit Builder – Free Win32 Exploit Development Platform

  1. Goodpeople December 6, 2007 at 10:58 am #

    I’ll leave the exploit building to the people that are good at it. I’m not a researcher. I teach security specialists.

  2. James December 6, 2007 at 6:44 pm #

    This is going to save me so much time.

  3. CG December 7, 2007 at 2:01 pm #

    its a good tool and Jerome put alot of work into it. there is also a video and paper on how to use it on his site, very good stuff

  4. net2004eng December 7, 2007 at 4:52 pm #

    This is way cool!!!

    This is perfect for people not only attempting to learn what the bundled exploits in MSF do, but also – of course – for those people who are actively developing exploits. Another major piece to this is that it is a Windows based tool as well…

    Hats off to the developers!

  5. Pantagruel December 7, 2007 at 9:29 pm #

    After toying with MetaSploit, this is definitely going to get tested. I just can’t help it, curious by nature. Furthermore it will come in handy for all my Windows bound colleagues who still thing my penguin to be a fluffy toy.

  6. Sir Henry December 14, 2007 at 5:17 pm #

    I agree with Pantagruel. The curiosity here is paramount and intoxicating. Although I am not someone who normally looks to craft exploits (not for lack of want), but this is something with which I shall have to experiment. I just need to get Windows on a system somewhere.

  7. fak3r December 14, 2007 at 6:25 pm #

    This is hilarious, I need to see if it’ll run under Wine! If not I may slap VirtualBox on Linux to play with this. What’s next, an Eclipse plugin for Metasploit? Too fun!