White ghost
Newbie
 Offline
Posts: 36
Im a ghost from paradise
|
 |
« on: October 31, 2011, 01:24:32 AM » |
|
Hello and please help me !
im a new member of ethicalhacker.net its prety good but i have bad damn problem with iis 6. in pentration test duration. the webDAV service is closed on the iis web server and icant use web dav exploit please help me to exploit the iis server
|
|
|
|
|
Logged
|
MCITP CCENT
|
|
|
|
millwalll
Guest
|
 |
« Reply #1 on: October 31, 2011, 04:32:37 AM » |
|
If you don't have access to webdav try and think what you do have access too. Maybe you cant exploit the machine!
|
|
|
|
|
Logged
|
|
|
|
White ghost
Newbie
Offline
Posts: 36
Im a ghost from paradise
|
|
« Reply #2 on: October 31, 2011, 04:59:12 AM » |
|
No mr Jamie.R i scanned the web server with metasploit webdav scanner ans i sure the webdav service is of other iis exploits in metasploit is for iis 4 and 5 is not for iis 6 do you have an exploit code or a tool or some thing like that
|
|
|
|
|
Logged
|
MCITP CCENT
|
|
|
White ghost
Newbie
Offline
Posts: 36
Im a ghost from paradise
|
|
« Reply #3 on: October 31, 2011, 06:07:41 AM » |
|
i can crack the ftp passwoed but about the iis not thing please heeeeeelp mee!!!!!!!!!!!!!!!!!!!!!!  |
|
|
|
|
Logged
|
MCITP CCENT
|
|
|
|
3xban
|
|
« Reply #4 on: October 31, 2011, 08:55:26 AM » |
|
It is possible that the webDAV service may have been patched or a workaround has been configured to prevent such attack. What exploit are you trying to use? CVE?
|
|
|
|
|
Logged
|
Certs: GCWN
(@)Dewser
|
|
|
White ghost
Newbie
Offline
Posts: 36
Im a ghost from paradise
|
|
« Reply #5 on: October 31, 2011, 12:22:28 PM » |
|
i wanna use iis webdav upload asp exploit in metasploit with windows\meterpreter\reverse tcp but its not working
|
|
|
|
|
Logged
|
MCITP CCENT
|
|
|
|
3xban
|
|
« Reply #6 on: October 31, 2011, 01:58:55 PM » |
|
What is the error you receive? Are you attacking from internal or external? A number of factors may come into play. Firewall may be using egress filtering and not allowing the traffic to go out over your reverse_tcp session. IPS may be blocking the attack or the admins may have implemented the workaround from http://osvdb.org/397. |
|
|
|
|
Logged
|
Certs: GCWN
(@)Dewser
|
|
|
White ghost
Newbie
Offline
Posts: 36
Im a ghost from paradise
|
|
« Reply #7 on: November 01, 2011, 01:00:34 AM » |
|
When the exploit process is completed the metasploit gives me this message (exploit is completed but no session was created) i think you are right maybe the firewall is block my session do you have solution for this?
|
|
|
|
|
Logged
|
MCITP CCENT
|
|
|
White ghost
Newbie
Offline
Posts: 36
Im a ghost from paradise
|
|
« Reply #8 on: November 01, 2011, 01:41:27 AM » |
|
and i forgot to tell you something 3xban my attack to the web server is external
Thanx alot for helping me
|
|
|
|
|
Logged
|
MCITP CCENT
|
|
|
White ghost
Newbie
Offline
Posts: 36
Im a ghost from paradise
|
|
« Reply #9 on: November 01, 2011, 09:02:48 AM » |
|
iAnyone have another exploit or tools to hack iid 6?
|
|
|
|
|
Logged
|
MCITP CCENT
|
|
|
|
3xban
|
|
« Reply #10 on: November 01, 2011, 09:07:10 AM » |
|
You may have to consider another way to pop the box. IIS may not be a viable attack vector if it has been properly hardened and the outter defenses are also hardened. Just because something is present, doesn't always mean it is exploitable.
|
|
|
|
|
Logged
|
Certs: GCWN
(@)Dewser
|
|
|
White ghost
Newbie
Offline
Posts: 36
Im a ghost from paradise
|
|
« Reply #11 on: November 01, 2011, 09:16:05 AM » |
|
Yes 3xban but i must show iis vulnerability to my boss he likes this
damn service and also i cant go to my office and attack to the web server
|
|
|
|
|
Logged
|
MCITP CCENT
|
|
|
|
3xban
|
|
« Reply #12 on: November 01, 2011, 09:20:53 AM » |
|
Well there is nothing wrong with IIS. The other option is to run a vulnerability scan against it using a tool like NESSUS or run Microsoft Baseline Security Analyzer (MBSA) against it to see if there are any issues that need resolving. If the NESSUS scan and MBSA scans come back clean, then there isn't much else to report. If there is any specific Web Application running (other than IIS) then you can utilize a number of Web App security testing packages to report if there are any vulnerabilities there.
So why can't you review the box at the office?
|
|
|
|
|
Logged
|
Certs: GCWN
(@)Dewser
|
|
|
White ghost
Newbie
Offline
Posts: 36
Im a ghost from paradise
|
|
« Reply #13 on: November 01, 2011, 09:39:48 AM » |
|
because i wanna act like a malicious hacker im a help desk an my office i have credential on the office but work is not malicious i have
permission to do that!
|
|
|
|
|
Logged
|
MCITP CCENT
|
|
|
|
hayabusa
|
|
« Reply #14 on: November 01, 2011, 10:44:26 AM » |
|
Wait... You're saying you're 'helpdesk' and at work you have permission, but you DON'T for this?
Are you certain you've been assigned to, or are being allowed to, test this website / webserver?
This thread reads like you're trying to prove a point, without permission.....
Please clarify EXACTLY what it is you're doing, and why.
|
|
|
|
|
Logged
|
~ hayabusa ~
"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'
OSCE, OSCP , GPEN, C|EH |
|
|
|
