Home
Calendar
Certifications
Columns
Features
Forum
Resources
Vitals
Latest Additions
April 2013 Free Giveaway Sponsor - eLearnSecurity
Human Intelligence to Navigate the Security Data Deluge
February 2013 Free Giveaway Winner of SANS CyberCon Training
Interview: Bugcrowd Founders on Herding Ninjas for Crowdsourced Bug Bounties
Network Forensics: The Tree in the Forest
March 2013 Free Giveaway Sponsor - Mile2
Book Review: Violent Python
February 2013 Free Giveaway Sponsor - SANS
Holiday 2012 Free Giveaway Winner of Metasploit Pro by Rapid7
Course Review: SANS FOR408 Computer Forensic Investigations – Windows In-Depth
The Security Consulting Sugar High
Tutorial: Fun with SMB on the Command Line
Interview: Ilia Kolochenko, CEO of High-Tech Bridge
October 2012 Free Giveaway Winner of LearningGate Training
The Broken: Assessing Corporate Security in 2012 to Make a Better 2013
EH-Net Login
Welcome Guest.
Username:
Password:
Remember me
Lost Password?
No account yet?
Register
Who's Online
We have 33 guests and 1 member online
Free Business and Tech Magazines and eBooks
You are here:
Home
Ethical Hacking Discussions and Related Certifications
Malware
msfpayload
EH-Net
May 26, 2013, 12:54:17 AM
Welcome,
Guest
. Please
login
or
register
.
Did you miss your
activation email?
1 Hour
1 Day
1 Week
1 Month
Forever
Login with username, password and session length
News
: Go back to The Ethical Hacker Network Online Magazine
Home Page
Home
Help
Calendar
Login
Register
EH-Net
>
Ethical Hacking Discussions and Related Certifications
>
Malware
(Moderator:
don
) >
msfpayload
Pages: [
1
]
2
Go Down
« previous
next »
Print
Author
Topic: msfpayload (Read 7098 times)
0 Members and 1 Guest are viewing this topic.
fred
Sr. Member
Offline
Posts: 351
The World is sick, Save your mind...
msfpayload
«
on:
August 15, 2012, 03:51:18 PM »
hi guys,
Im so sorry i posted another topic near to this subject before but i did that coz i have to so again so sory
Guys i can work with msfpayload program but i have these quiz:
1- Can i use this payload against computers over the internet (i meam for systems with dynamic ipv4 address can i attack them?)
2- is this payload files detectable by av?
3- can i put two payloads in a file?
4- has msf some key loggers with this payload?
Help me please
Thnx
«
Last Edit: August 15, 2012, 03:53:49 PM by cyber.spirit
»
Logged
ICS Academy Network Security Certified
ajohnson
Recruiters
Hero Member
Offline
Posts: 1060
aka dynamik
Re: msfpayload
«
Reply #1 on:
August 15, 2012, 04:37:56 PM »
I'm giving you the benefit of the doubt since you've been a member here for awhile, but this sounds kind of sketchy...
Quote from: cyber.spirit on August 15, 2012, 03:51:18 PM
1- Can i use this payload against computers over the internet (i meam for systems with dynamic ipv4 address can i attack them?)
If you get written permission from the target system owner(s)...
Quote from: cyber.spirit on August 15, 2012, 03:51:18 PM
2- is this payload files detectable by av?
Probably, but results will vary greatly based on AV.
Quote from: cyber.spirit on August 15, 2012, 03:51:18 PM
3- can i put two payloads in a file?
If you make a custom exe with some sort of logic that chooses between them based on some variable(s). I don't think there's a way to do this automatically in the framework.
Quote from: cyber.spirit on August 15, 2012, 03:51:18 PM
4- has msf some key loggers with this payload?
Yes, within meterpreter.
Logged
WIP: GCFA |
www.infosiege.net
| @infosiege
The day you stop learning is the day you start becoming obsolete.
fred
Sr. Member
Offline
Posts: 351
The World is sick, Save your mind...
Re: msfpayload
«
Reply #2 on:
August 15, 2012, 05:11:37 PM »
Quote from: ajohnson on August 15, 2012, 04:37:56 PM
I'm giving you the benefit of the doubt since you've been a member here for awhile, but this sounds kind of sketchy...
Quote from: cyber.spirit on August 15, 2012, 03:51:18 PM
1- Can i use this payload against computers over the internet (i meam for systems with dynamic ipv4 address can i attack them?)
If you get written permission from the target system owner(s)...
Man since i sweared to help people i never did anything ilegal and im not gonna do it in future too i think it was better to tell u my scenario first
I have to PCs in two different places 1 of them runs bt5 its dual boot os with win xp i wanna use bt as attacker system and the other one run win7 with kaspersky both of them are connected to the internet not lan and i want to send the win7 pc a payload file via email so now what do u think is it possible
«
Last Edit: August 15, 2012, 05:23:46 PM by cyber.spirit
»
Logged
ICS Academy Network Security Certified
fred
Sr. Member
Offline
Posts: 351
The World is sick, Save your mind...
Re: msfpayload
«
Reply #3 on:
August 15, 2012, 05:26:24 PM »
and can i use it in reverse way? I mean i install msf on the win7 then send the payload file to bt? Is it possible? I dont think so
Logged
ICS Academy Network Security Certified
jjwinter
Jr. Member
Offline
Posts: 76
Re: msfpayload
«
Reply #4 on:
August 15, 2012, 05:37:24 PM »
So long as your router on the BT5 end is set to port forward whatever port you had your exploit use and BT5 is listening on, should be OK. Haven't tested that myself yet, just been doing stuff on my local LAN. Let us know if your AV picks anything up when you open your mail on the remote test boxes.
Logged
shadowzero
Full Member
Offline
Posts: 120
It's a UNIX system, I know this!
Re: msfpayload
«
Reply #5 on:
August 15, 2012, 07:07:39 PM »
If you own both computers, then just try it and find out what happens. Part of learning to hack is experimenting and seeing what the results are and interpreting them.
Quote from: cyber.spirit on August 15, 2012, 03:51:18 PM
hi guys,
Im so sorry i posted another topic near to this subject before but i did that coz i have to so again so sory
Guys i can work with msfpayload program but i have these quiz:
1- Can i use this payload against computers over the internet (i meam for systems with dynamic ipv4 address can i attack them?)
2- is this payload files detectable by av?
3- can i put two payloads in a file?
4- has msf some key loggers with this payload?
Help me please
Thnx
Logged
SecurityMonkey
Jr. Member
Offline
Posts: 89
Re: msfpayload
«
Reply #6 on:
August 15, 2012, 11:46:11 PM »
Quote from: cyber.spirit on August 15, 2012, 05:11:37 PM
I have to PCs in two different places 1 of them runs bt5 its dual boot os with win xp i wanna use bt as attacker system and the other one run win7 with kaspersky both of them are connected to the internet not lan and i want to send the win7 pc a payload file via email so now what do u think is it possible
Well to answer your question about sending the payload via email the best bet would be to create a malicious PDF and send it to the "user" on the windows 7 machine.
http://www.offensive-security.com/metasploit-unleashed/Client_Side_Attacks
Logged
www.securitymonkey.net
fred
Sr. Member
Offline
Posts: 351
The World is sick, Save your mind...
Re: msfpayload
«
Reply #7 on:
August 16, 2012, 01:18:33 AM »
Quote from: shadowzero on August 15, 2012, 07:07:39 PM
If you own both computers, then just try it and find out what happens. Part of learning to hack is experimenting and seeing what the results are and interpreting them.
So u want me to drive a half of city to find out that im failed?! Man these systems are not in my local lab to switch between them easily.
I just want to send the payload there if i get the result. Then i reinstall the os and av coz it has many problems now
Logged
ICS Academy Network Security Certified
fred
Sr. Member
Offline
Posts: 351
The World is sick, Save your mind...
Re: msfpayload
«
Reply #8 on:
August 16, 2012, 01:22:04 AM »
Quote from: S3curityM0nkey on August 15, 2012, 11:46:11 PM
Quote from: cyber.spirit on August 15, 2012, 05:11:37 PM
I have to PCs in two different places 1 of them runs bt5 its dual boot os with win xp i wanna use bt as attacker system and the other one run win7 with kaspersky both of them are connected to the internet not lan and i want to send the win7 pc a payload file via email so now what do u think is it possible
Well to answer your question about sending the payload via email the best bet would be to create a malicious PDF and send it to the "user" on the windows 7 machine.
http://www.offensive-security.com/metasploit-unleashed/Client_Side_Attacks
Awsome thanx
Logged
ICS Academy Network Security Certified
m0wgli
Full Member
Offline
Posts: 248
Re: msfpayload
«
Reply #9 on:
August 16, 2012, 02:49:32 AM »
In addition to the Metasploit Unleashed course already mentioned, the following are also very useful resources:
Metasploit: The Penetration Tester's Guide:
http://nostarch.com/metasploit
SecurityTube's Metasploit Framework Expert (SMFE) Course Material:
http://www.securitytube.net/groups?operation=view&groupId=10
Logged
Security + | OSWP | eCPPT | CSTA
Jamie.R
Sr. Member
Offline
Posts: 429
Re: msfpayload
«
Reply #10 on:
August 16, 2012, 03:13:03 AM »
They are great resources There are also loads video on metasploit on the net on security blogs so on.
Logged
OSWP | Hackingdojo Nidan | eCPPT
shadowzero
Full Member
Offline
Posts: 120
It's a UNIX system, I know this!
Re: msfpayload
«
Reply #11 on:
August 16, 2012, 07:40:51 AM »
Quote from: cyber.spirit on August 16, 2012, 01:18:33 AM
Quote from: shadowzero on August 15, 2012, 07:07:39 PM
If you own both computers, then just try it and find out what happens. Part of learning to hack is experimenting and seeing what the results are and interpreting them.
So u want me to drive a half of city to find out that im failed?! Man these systems are not in my local lab to switch between them easily.
If your machine is already exposed to the internet such that you can attack it, then you can easily monitor its state remotely by setting up SSH, or even some remote desktop over VPN. Log in remotely, run your exploit, check to see if it worked.
Logged
Andrew Waite
Hero Member
Offline
Posts: 928
Re: msfpayload
«
Reply #12 on:
August 16, 2012, 08:04:00 AM »
Giving the benefit of the doubt, if you've got a machine on the net that you can target with MSF as a test, others can too.
Strongly suggest killing the connection and leaving the vulnerable systems on internal labs only, if you need remote access openVPN etc. will be your friend....
Logged
--
http://www.infosanity.co.uk
--
http://blog.infosanity.co.uk
hayabusa
Hero Member
Offline
Posts: 1633
Re: msfpayload
«
Reply #13 on:
August 16, 2012, 10:22:57 AM »
Quote from: Andrew Waite on August 16, 2012, 08:04:00 AM
Giving the benefit of the doubt...
Second...
Logged
~ hayabusa ~
"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'
OSCE, OSCP , GPEN, C|EH
fred
Sr. Member
Offline
Posts: 351
The World is sick, Save your mind...
Re: msfpayload
«
Reply #14 on:
August 16, 2012, 01:06:54 PM »
Quote from: Andrew Waite on August 16, 2012, 08:04:00 AM
Giving the benefit of the doubt, if you've got a machine on the net that you can target with MSF as a test, others can too.
Strongly suggest killing the connection and leaving the vulnerable systems on internal labs only, if you need remote access openVPN etc. will be your friend....
Quote from: shadowzero on August 16, 2012, 07:40:51 AM
If your machine is already exposed to the internet such that you can attack it, then you can easily monitor its state remotely by setting up SSH, or even some remote desktop over VPN. Log in remotely, run your exploit, check to see if it worked.
Guys i just wanna learn more about msfpayload i know the risks and i todl you after this test i will renistall windows and av coz my system already has some problems (not security problems) and my system's ip address is dynamic how can yous openvpn or ssh??? besides i just want to learn msfpayload i dont need that
Logged
ICS Academy Network Security Certified
Pages: [
1
]
2
Go Up
Print
« previous
next »
Jump to:
Please select a destination:
-----------------------------
EH-Net
-----------------------------
=> Calendar Of Events
===> ChicagoCon 2007
===> ChicagoCon 2008s
===> ChicagoCon 2008f
===> ChicagoCon 2009s
=> Ethical Hacktivism
=> News Items and General Discussion About EH-Net
===> Greetings
=> Special Events
-----------------------------
Ethical Hacking Discussions and Related Certifications
-----------------------------
=> General Certification
===> Networking
===> OS
===> Security
=> Compliance, Regulations & Standards
=> Control Systems
=> Cyber Warfare
=> Forensics
===> CCE / MCCE - (Master) Certified Computer Examiner
===> CHFI - Computer Hacking Forensic Investigator
===> EnCE - EnCase® Certified Examiner
===> GCFA - GIAC Certified Forensics Analyst
=> Hardware
=> Incident Response
===> CSIH - Computer Security Incident Handler
===> GCIH - GIAC Certified Incident Handler
=> Malware
===> Advisories
=> Mobile
=> Network Pen Testing
===> CEH - Certified Ethical Hacker
===> CPTC - Certified Penetration Testing Consultant
===> CPTE - Certified Penetration Testing Engineer
===> CSTA - Certified Security Testing Associate
===> eCPPT - eLearnSecurity Certified Professional Penetration Tester
===> ECSA - EC-Council Certified Security Analyst
===> GPEN - GIAC Certified Penetration Tester
===> OSCP - Offensive Security Certified Professional
=> Physical Security
=> Programming
=> Social Engineering
=> Web Applications
=> Wireless
===> CWNP Certs
===> GAWN - GIAC Assessing Wireless Networks
===> OSWP - Offensive Security Wireless Professional
=> Other
-----------------------------
Columns
-----------------------------
=> Editor-In-Chief
=> Andress
=> Gates
=> Haddix
=> Hadnagy
=> Heffner
=> Hoffman
=> Linn
=> RichM
=> Murray
=> J. Peltier
=> Weidman
=> Wilson
-----------------------------
Features
-----------------------------
=> /root
=> Book Reviews
=> Opinions
=> Skillz
===> Examples
===> May 06 - Star Hacks, Episode V: The Empire Hacks Back
===> July 06 - Hack Bill!
===> Sept 06 - Netcat in the Hat
===> Nov 06 - Hitch-Hackers Guide to the Galaxy
===> Dec 06 - A Christmas (Hacking) Story
===> Feb 07 - Charlottes Web Site
===> April 07 - Microsoft Office Space
===> June 07 - Serenity Hack
===> Oct 07 - Worst. Ethical. Hacker. Challenge. Ever.
===> Dec 07 - Frosty the Snow Crash
===> March 2008 - It Happened One Friday
===> Oct 2008 - Scooby Doo and the Crypto Caper
===> Dec 08 - Santa Claus Is Hacking to Town
===> Feb 2009 - Brady Bunch Boondoggle
===> July 2009 - Prison Break
===> October 2009 - SSHliders
===> December 2009 - Miracle on Thirty-Hack Street
===> December 2010 - The Nightmare Before Charlie Browns Christmas
-----------------------------
Resources
-----------------------------
=> Career Central
===> Looking For Work
===> Looking To Hire
=> Links to cool sites.
=> Mass Media
=> News from the Outside World
=> Tools
=> Tutorials
===> Tutorial Requests
Loading...
Exclusive Deal
SANSFIRE 2013
June 15 - 22
5% Off
w/ Code
:
EHN_5
SANS Deals 4 EH-Netters
5% OFF
Any
SANS Course
in Any Format!
Coupon Code:
EHN_5
Including
SANS Rocky Mountain 2013
&
SANS Boston 2013
Polls
Compared to this year, 2013 will be:
Great!
Better.
About the same.
Little worse.
FUBAR!
Recent Forum Topics
OSCP - Offensive Security Certified Professional
: Failed my first attempt at the OSCP exam
(95) by
zeebee
News Items and General Discussion About EH-Net
: Change is Coming to EH-Net!!
(30) by
don
Tools
: Symbolic Exploit Assistant project is looking for collaborators
(0) by
galapag0
Greetings
: Hi from the UK
(5) by
prats84
GCIH - GIAC Certified Incident Handler
: Passed my GCIH
(9) by
prats84
Network Pen Testing
: Want a challenge? Want a GXPN practice exam?
(0) by
ajohnson
GCIH - GIAC Certified Incident Handler
: GCIH Free Practice test attempt
(1) by
prats84
EH-Net News Feeds
Latest Additions
Privacy Notice
for TDCC & All Properties
Free Business and Tech Magazines and eBooks
© 2013 The Ethical Hacker Network
Joomla!
is Free Software released under the GNU/GPL License.
OSCP - Offensive Security Certified Professional : Failed my first attempt at the OSCP exam
