If port 445 is open then metasploit exploit ms06_040_netapi would do the job. Similarly which is the best metasploit exploit for the following ports.:confused:
Is there any reference/guide/tutorials regarding metasploit exploits. Any kind of help will be appreciated. Your help is much needed.:)
That exploit should work for 2000 machine that are poorly patched and 2003 or XP machines if they are horrible mis-configured
Heres a link with video on running different metaspliot runs; [framework[/url][dot]metasploit[dot]com/msf/gallery
Well just knowing how metasploit works doesn't help at all. Did you look up what is running on these ports?
Originally Posted by playtowin
You should try to walk before you try to run.
Well, I'd advise a lot of research first, but once you know, there is the cheats way...
If you don't even understand ports and services then you should get your self a book on basic TCP/IP protocol and a complete port list.
This might help the OP http://ports.tantalo.net/
Originally Posted by pureh@te
This statement is incorrect.
Originally Posted by playtowin
People over here are finding it hard to understand me except for Kriss128 . I clearly and for sure do know which ports run which services. The point here is I'm not able to execute any attack on ports which are open(Example : If port 21 is open which is FTP I try to run an FTP exploit but do not succeed as my knowledge to metasploit is very limited). I don't know much about metasploit and I had asked for reference/guide/tutorials regarding metasploit exploits and not TCP/IP. Why does one follow another ones comment and writes on it blindly. Read the post and understand before you comment(Think Twice). Does my question look complicated??. Thank You Kriss128 for understanding and taking time to help me.
1) It's a technical forum, you can't open with a statement which is blatantly and obviously incorrect and expect technical people to believe that you know what you're talking about.
2) Just because a port is open DOES NOT mean it is vulnerable.
3) Knowledge of Metasploit isn't the issue. Your inability to exploit an FTP service has nothing to do with your knowledge (or lack thereof) of Metasploit. It has to do with you not having done all the necessary steps to identify the service and potential exploits associated with that service. ie: Great port 21 is open. Is it ACTUALLY FTP or is it something on a non-standard port? What specific FTP server is running? What specific version? What operating system is it running on top of? Did you check Secunia/Mitre(CVE)/BugTraq/etc, or product Changelogs etc to see if that server (software) and version are vulnerable to anything? Does Metasploit or Milw0rm etc list any exploits/proof of concepts for what you've encountered.
4) "Similarly which is the best metasploit exploit for the following ports?" Is an invalid question. Because:
a) "Best" is qualitative not quantitative. Best for whom? Best to accomplish what?
b) The "best" exploit for a given services is dependent upon much more then an open port. As mentioned in #2 and #3 above it depends on actual software, version, OS, etc.
5) "Is there any reference/guide/tutorials regarding metasploit exploits." yes there are, try practicing your google'fu.
Not a problem. To make metasploit alot easier db_autopwn which phoenix910 stated. it automates all the exploits and payloads that are related to the ports and services running on target machine. Theres a video of that on the link I posted. And for your ftp attempt it be of not been the exploit but the paylod you used so try some different ones.