IFTTT

So I put this out on twitter but failed to document it for historical reasons/find it when I need it. I was able to replace the PoC payload with the payload from Metasploit’s web delivery and it worked just fine. original PoC here: https://gist.github.com/subTee/24c7d8e1ff0f5602092f58cbb3f7d302#file-backdoor-sct Below we can see the replaced payload:…

Read More