|
Title: msfpayload Post by: fred on August 15, 2012, 03:51:18 PM hi guys,
Im so sorry i posted another topic near to this subject before but i did that coz i have to so again so sory Guys i can work with msfpayload program but i have these quiz: 1- Can i use this payload against computers over the internet (i meam for systems with dynamic ipv4 address can i attack them?) 2- is this payload files detectable by av? 3- can i put two payloads in a file? 4- has msf some key loggers with this payload? Help me please Thnx Title: Re: msfpayload Post by: ajohnson on August 15, 2012, 04:37:56 PM I'm giving you the benefit of the doubt since you've been a member here for awhile, but this sounds kind of sketchy...
1- Can i use this payload against computers over the internet (i meam for systems with dynamic ipv4 address can i attack them?) If you get written permission from the target system owner(s)... 2- is this payload files detectable by av? Probably, but results will vary greatly based on AV. 3- can i put two payloads in a file? If you make a custom exe with some sort of logic that chooses between them based on some variable(s). I don't think there's a way to do this automatically in the framework. 4- has msf some key loggers with this payload? Yes, within meterpreter. Title: Re: msfpayload Post by: fred on August 15, 2012, 05:11:37 PM I'm giving you the benefit of the doubt since you've been a member here for awhile, but this sounds kind of sketchy... Man since i sweared to help people i never did anything ilegal and im not gonna do it in future too i think it was better to tell u my scenario first1- Can i use this payload against computers over the internet (i meam for systems with dynamic ipv4 address can i attack them?) If you get written permission from the target system owner(s)... I have to PCs in two different places 1 of them runs bt5 its dual boot os with win xp i wanna use bt as attacker system and the other one run win7 with kaspersky both of them are connected to the internet not lan and i want to send the win7 pc a payload file via email so now what do u think is it possible Title: Re: msfpayload Post by: fred on August 15, 2012, 05:26:24 PM and can i use it in reverse way? I mean i install msf on the win7 then send the payload file to bt? Is it possible? I dont think so
Title: Re: msfpayload Post by: jjwinter on August 15, 2012, 05:37:24 PM So long as your router on the BT5 end is set to port forward whatever port you had your exploit use and BT5 is listening on, should be OK. Haven't tested that myself yet, just been doing stuff on my local LAN. Let us know if your AV picks anything up when you open your mail on the remote test boxes.
Title: Re: msfpayload Post by: shadowzero on August 15, 2012, 07:07:39 PM If you own both computers, then just try it and find out what happens. Part of learning to hack is experimenting and seeing what the results are and interpreting them.
hi guys, Im so sorry i posted another topic near to this subject before but i did that coz i have to so again so sory Guys i can work with msfpayload program but i have these quiz: 1- Can i use this payload against computers over the internet (i meam for systems with dynamic ipv4 address can i attack them?) 2- is this payload files detectable by av? 3- can i put two payloads in a file? 4- has msf some key loggers with this payload? Help me please Thnx Title: Re: msfpayload Post by: SecurityMonkey on August 15, 2012, 11:46:11 PM I have to PCs in two different places 1 of them runs bt5 its dual boot os with win xp i wanna use bt as attacker system and the other one run win7 with kaspersky both of them are connected to the internet not lan and i want to send the win7 pc a payload file via email so now what do u think is it possible Well to answer your question about sending the payload via email the best bet would be to create a malicious PDF and send it to the "user" on the windows 7 machine. http://www.offensive-security.com/metasploit-unleashed/Client_Side_Attacks Title: Re: msfpayload Post by: fred on August 16, 2012, 01:18:33 AM If you own both computers, then just try it and find out what happens. Part of learning to hack is experimenting and seeing what the results are and interpreting them. So u want me to drive a half of city to find out that im failed?! Man these systems are not in my local lab to switch between them easily.I just want to send the payload there if i get the result. Then i reinstall the os and av coz it has many problems now Title: Re: msfpayload Post by: fred on August 16, 2012, 01:22:04 AM I have to PCs in two different places 1 of them runs bt5 its dual boot os with win xp i wanna use bt as attacker system and the other one run win7 with kaspersky both of them are connected to the internet not lan and i want to send the win7 pc a payload file via email so now what do u think is it possible Well to answer your question about sending the payload via email the best bet would be to create a malicious PDF and send it to the "user" on the windows 7 machine. http://www.offensive-security.com/metasploit-unleashed/Client_Side_Attacks Title: Re: msfpayload Post by: m0wgli on August 16, 2012, 02:49:32 AM In addition to the Metasploit Unleashed course already mentioned, the following are also very useful resources:
Metasploit: The Penetration Tester's Guide: http://nostarch.com/metasploit SecurityTube's Metasploit Framework Expert (SMFE) Course Material: http://www.securitytube.net/groups?operation=view&groupId=10 Title: Re: msfpayload Post by: Jamie.R on August 16, 2012, 03:13:03 AM They are great resources There are also loads video on metasploit on the net on security blogs so on.
Title: Re: msfpayload Post by: shadowzero on August 16, 2012, 07:40:51 AM If you own both computers, then just try it and find out what happens. Part of learning to hack is experimenting and seeing what the results are and interpreting them. So u want me to drive a half of city to find out that im failed?! Man these systems are not in my local lab to switch between them easily.If your machine is already exposed to the internet such that you can attack it, then you can easily monitor its state remotely by setting up SSH, or even some remote desktop over VPN. Log in remotely, run your exploit, check to see if it worked. Title: Re: msfpayload Post by: Andrew Waite on August 16, 2012, 08:04:00 AM Giving the benefit of the doubt, if you've got a machine on the net that you can target with MSF as a test, others can too.
Strongly suggest killing the connection and leaving the vulnerable systems on internal labs only, if you need remote access openVPN etc. will be your friend.... Title: Re: msfpayload Post by: hayabusa on August 16, 2012, 10:22:57 AM Title: Re: msfpayload Post by: fred on August 16, 2012, 01:06:54 PM Giving the benefit of the doubt, if you've got a machine on the net that you can target with MSF as a test, others can too. Strongly suggest killing the connection and leaving the vulnerable systems on internal labs only, if you need remote access openVPN etc. will be your friend.... If your machine is already exposed to the internet such that you can attack it, then you can easily monitor its state remotely by setting up SSH, or even some remote desktop over VPN. Log in remotely, run your exploit, check to see if it worked. Guys i just wanna learn more about msfpayload i know the risks and i todl you after this test i will renistall windows and av coz my system already has some problems (not security problems) and my system's ip address is dynamic how can yous openvpn or ssh??? besides i just want to learn msfpayload i dont need that Title: Re: msfpayload Post by: jjwinter on August 16, 2012, 01:25:41 PM You could use a host name registered with a free DNS updater, like no-ip.info so you always know the remote's IP. Use Logmein free to access it and to open your infected emails remotely and see if they work.
Title: Re: msfpayload Post by: shadowzero on August 16, 2012, 01:31:51 PM my system's ip address is dynamic how can yous openvpn or ssh??? For future reference: http://www.no-ip.com/getting_started.php http://help.logmein.com/selfserviceknowledgerenderer?type=FAQ&id=kA030000000DGCkCAO Since it's difficult for you to monitor the remote machine, I strongly suggest you play with msfpayload on a machine that you can easily monitor and control. If that means setting up a virtual machine running Windows, do it. Title: Re: msfpayload Post by: SecurityMonkey on August 16, 2012, 05:25:54 PM If your after a good book on the topis then Metasploit: The Penetration Tester's Guide is the way to go. I finished it a couple of months ago and found it very well written with lots of great examples.
http://www.amazon.com/Metasploit-The-Penetration-Testers-Guide/dp/159327288X/ref=sr_1_sc_1?ie=UTF8&qid=1345155869&sr=8-1-spell&keywords=metaspliot Title: Re: msfpayload Post by: jjwinter on August 16, 2012, 07:08:56 PM x2 on that book. Great examples to work through and well written.
Powered by SMF 1.1.18 |
SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com |