This a great attack. I could have used Cobalt Strike to clone
the website and embed the addon and change the name of the
addon. But I did not I just wanted show what Metasploit can do.
Click the video to see the install tutorial.
http://youtu.be/wWXcrBDkHpM
MORE INFO
http://www.rapid7.com/db/modules/exploit/multi/browser/firefox_xpi_bootstrapped_addon http://www.rapid7.com/db/modules/payload/windows/meterpreter/reverse_tcp
I just installed Tortilla. It routs all my virtual machines traffic through
Tor. Click the video to see the install tutorial.
http://youtu.be/RFt6nBTseD8
More INFO
Tortilla v1.1.0 Beta by Jason Geffner (jason@crowdstrike.com) and Cameron Gutman (cameron@crowdstrike.com) Tortilla is a free and open-source solution for Windows that transparently routes
all TCP and DNS traffic through Tor. This product is produced independently from the Tor(r) anonymity software and carries
no guarantee from The Tor Project about quality, suitability or anything else.
BUILD INSTRUCTIONS A pre-built version of Tortilla.exe can be downloaded from
http://www.crowdstrike.com/community-tools/
