when i using show expliot command i see alot of only windows exploits and i dont know anything about search exploit can explian more

do you know whats the best security certificate ceh or security +

do you know anything about miniserv?

hello there i wanna ask  a question about metasploit i using backtrack and run ìt from terminal when i use show exploit command i cant see a full list of expliots for example linux exploits can you tell why?

yes i start reading it and its awsome

yes you can do it.for example you can download linux version metasploit and install it on ubuntu but why do you install backtrack on your local computer you can vmware or virtual box on your windows 7 and boot from what ever os you want!

and here is the services are runnig on the server
http     
ssl/https?
pptp linux (Firmware: 1)
http MiniServ 1.570

hello Jamie.R
yes i understand PHP a little. and there is no sql service is running on the server.about the burpsuite i have a trial version of it and the scanner button is working do you know other softwares to do that for me?

as i think the web site only using php and xss no jav no asp not thing!

and i scaned the site with a CMS scanner i founfd this vulnerabilites

=================================================
Vulnerabilities Discovered
=================================================
# 1
Info -> Core: Multiple XSS/CSRF Vulnerability
Versions Affected: 1.5.9 <=
Check: /?1.5.9-x
Exploit: A series of XSS and CSRF faults exist in the administrator application.  Affected administrator components include com_admin, com_media, com_search.  Both com_admin and com_search contain XSS vulnerabilities, and com_media contains 2 CSRF vulnerabilities. 
Vulnerable? N/A

# 2
Info -> Core: JSession SSL Session Disclosure Vulnerability
Versions effected: Joomla! 1.5.8 <=
Check: /?1.5.8-x
Exploit: When running a site under SSL (the entire site is forced to be under ssl), Joomla! does not set the SSL flag on the cookie.  This can allow someone monitoring the network to find the cookie related to the session.
Vulnerable? N/A

# 3
Info -> Core: Frontend XSS Vulnerability
Versions effected: 1.5.10 <=
Check: /?1.5.10-x
Exploit: Some values were output from the database without being properly escaped.  Most strings in question were sourced from the administrator panel. Malicious normal admin can leverage it to gain access to super admin.
Vulnerable? N/A

# 4
Info -> Core: Frontend XSS - HTTP_REFERER not properly filtered Vulnerability
Versions effected: 1.5.11 <=
Check: /?1.5.11-x-http_ref
Exploit: An attacker can inject JavaScript or DHTML code that will be executed in the context of targeted user browser, allowing the attacker to steal cookies. HTTP_REFERER variable is not properly parsed.
Vulnerable? N/A

# 5
Info -> Core: Frontend XSS - PHP_SELF not properly filtered Vulnerability
Versions effected: 1.5.11 <=
Check: /?1.5.11-x-php-s3lf
Exploit: An attacker can inject JavaScript code in a URL that will be executed in the context of targeted user browser.
Vulnerable? N/A

# 6
Info -> Core: Path Disclosure Vulnerability
Versions effected: Joomla! 1.5.3 <=
Check: /?1.5.3-path-disclose
Exploit: Crafted URL can disclose absolute path
Vulnerable? N/A

# 7
Info -> Core: User redirected Spamming Vulnerability
Versions effected: Joomla! 1.5.3 <=
Check: /?1.5.3-spam
Exploit: User redirect spam
Vulnerable? N/A
=================================================

do you know what i must to do next ?

and about your main question :
the owner of the is my brother
and he dosent know anything about web server or services or some thing like that
the site is an econamy forum and as you know every forums has dynamic content

thank you for helping me
take care

 i searched exploit-db.com and i found some perl exploit but its not runing on backtrack

as i know i found some dns server in footprinting and nmap tell me the server os is windows server 2008 985 but i dont think so i think it linux and the web script language is PHP

and as i said im beginner in hacking world
i can attack iis servers ftp and .................

cd1zz
yes you right as i said i have microsft product hacking experiance

ok cd1zz
may i ask you somtihng?
do you know any refrence to learn how to enumerate services
and search for any known exploits ? as you said
about web attack tools can you tel a compelete name of them?
thanks alot for your help and take care

hello
i have a problem in pentest my target has a apache web server
with php page and i wanna perform an external attack to the server
i tried scan theserver with ( Acunetix Web Vulnerability Scanner 7 )
but i not found an efficient Vulnerability to exploit (maybe my Acunetix is noyt working properly its a free version ) i dont know what i must to do. i perfomed a port scanning ofthe server to and here is the open ports"

PORT      STATE  SERVICE    VERSION

21/tcp    open   tcpwrapped

80/tcp    open   http       Apache httpd

443/tcp   open   ssl/https?

1723/tcp  open   pptp       linux (Firmware: 1)

5901/tcp  open   vnc

10000/tcp open   http       MiniServ 1.570 (Webmin)

do you have any opinion about my problem ? and can i use metasploit to exploit the server
im new in hacking world please help me

thank you