LuiLui77
asked on
What is the difference between Payload and Shellcode?
Hello All,
I am a little confused about the difference between payload and shellcode. As per Metasploit book, shellconde is a set of instructions used as a payload when exploitation occurs, so it is also a payload.
Can someone clarify these terms?
Thank you!
I am a little confused about the difference between payload and shellcode. As per Metasploit book, shellconde is a set of instructions used as a payload when exploitation occurs, so it is also a payload.
Can someone clarify these terms?
Thank you!
ASKER
Got it, would I be right on saying that the shellcode is the code that makes the exploit possible and the payload is the code that we want the system to execute once exploited?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you Arnold, clear now
https://www.offensive-secu
In a nutshell.
A payload is an used to target cracking/hacking into a system.
The shellcode is the code generated by MSFpayload which delivers the payload to infect/compromise a machine.
You can choose the language of your shellcode which means you can modify this code to create your own new variants.
If you're new to this process, try PERL, which to me tends to be a bit more understandable + flexible then other scripting languages.
Or choose whatever language you prefer.