In: Computer Science
what is the difference between reverse_tcp and a reverse_ord_tcp payload?
Answer)
As the payloads use Http/https kind of traffic as well as protocols that inspect the firewall which would allow the traffic while it might block the other kind of traffics hence both these payloads are considered important.
Reverse TCP happens while the attacker is making the host to initiate the connection with that of the attacker.
As the TCP is mostly a connection-oriented protocol and has been used for the transportation of information via the internet hence it is considered to be a new approach for exploiting the connection processes. The attacker here would be able to seize the remote access if any to that of the victim's network.
On the other hand, the reverse_ord_tcp_payload or reverse_tcp payload is considered to be a staged payload that is being used for gaining the meterpreter for accessing in compromising the system. This is definitely a unique payload in that of the Metasploit Framework as it is one of the only payloads that gets to be used while there is an RFI vulnerability in that of the web apps.
Please comment in case you need any other inputs.
Please share a like if you find the answer helpful.
Thank you.