The GET method will request data or a web page from a specified resource and use it to browse web pages. On the other hand, the POST command sends the data from a form or a specific value to the resource for further processing. Now, this comes in handy when writing exploits that are web-based. The HTTP library simplifies posting particular queries or data to the specified pages.
Let's see what we need to perform in this exploit:
- Create a POST request
- Send our payload to the vulnerable application using the CODE parameter
- Get Meterpreter access to the target
- Perform a few post exploitation functions
We are clear on the tasks that we need to perform. Let's take a further step and generate a compatible ...