Results 1 to 7 of 7

Thread: Need help with Metasploit

  1. #1
    dimaglez
    Guest

    Default Need help with Metasploit

    Hi forum.

    I downloaded the BT3 final version few days ago and started to study it.
    I have used Linux before but I've never used any hack-tool before. Most of them are quite easy so I dont have problems with them. Now I am trying to get involved with Metasploit but I dont get to understand fully how it works. I mean I have an idea of what is an exploit and how it works (at least i think so ), but I dont have any idea of what are payloads and which of them I must use in what cases. Could someone tell me please where I can get the info about them because I am stucked!. Thanks

    P.S : Sorry for my English, I am from Ukraine and never studied it.

  2. #2
    Just burned his ISO
    Join Date
    Dec 2008
    Posts
    10

    Default

    Open the METASPLOIT Web GUI in the browser, payloads, exploits and such are all in there, its pretty self explanitory.. Just as an example, you get access to a network, under SAMBA shares all the NetBIOS enabled machines will show up, first thing, run NMAP and take a good look at what services they have running on the entire network, scan the entire IP range, if you see a Windows XP Box running SP2, then you can inject that machine with an exploit which will drop you into the windows 32 command shell. From there you can do what you like, disable something important like their anti-virus and upload a remote back-door for example.

    Or you could do the nice thing, look but don't touch, but where's the fun in that!?

    I once got onto a network with 245 networked windows machines.. it was exploit heaven!!!

    Here's a great site with stuff you can upload remotely into their Start up folder... The flasher one with a picture of Goatse.cx loaded into it never gets old...

    **********************8

  3. #3
    Senior Member
    Join Date
    Apr 2008
    Posts
    2,008

    Default

    Quote Originally Posted by ʞɔɐɹʇ|ʞɔɐq View Post
    Or you could do the nice thing, look but don't touch, but where's the fun in that!?

    I once got onto a network with 245 networked windows machines.. it was exploit heaven!!!
    Hmm... Please tell us more.
    -Monkeys are like nature's humans.

  4. #4
    Very good friend of the forum killadaninja's Avatar
    Join Date
    Oct 2007
    Location
    London, United Kingdom.
    Posts
    526

    Default

    Quote Originally Posted by ʞɔɐɹʇ|ʞɔɐq View Post
    Open the METASPLOIT Web GUI in the browser, payloads, exploits and such are all in there, its pretty self explanitory.. Just as an example, you get access to a network, under SAMBA shares all the NetBIOS enabled machines will show up, first thing, run NMAP and take a good look at what services they have running on the entire network, scan the entire IP range, if you see a Windows XP Box running SP2, then you can inject that machine with an exploit which will drop you into the windows 32 command shell. From there you can do what you like, disable something important like their anti-virus and upload a remote back-door for example.

    Or you could do the nice thing, look but don't touch, but where's the fun in that!?

    I once got onto a network with 245 networked windows machines.. it was exploit heaven!!!

    Here's a great site with stuff you can upload remotely into their Start up folder... The flasher one with a picture of Goatse.cx loaded into it never gets old...
    **********

    I think youll recieve a warning for this post
    Sometimes I try to fit a 16-character string into an 8–byte space, on purpose.

  5. #5
    Just burned his ISO
    Join Date
    Dec 2008
    Posts
    10

    Default

    Quote Originally Posted by =Tron= View Post
    Hmm... Please tell us more.
    Well I did the nice thing, I looked but didn't touch, once I'm in I am afraid to say I loose interest pretty quick, for me its the thrill of the chase..

  6. #6
    Just burned his ISO
    Join Date
    Dec 2008
    Posts
    10

    Default

    Quote Originally Posted by killadaninja View Post
    I think youll recieve a warning for this post
    Cant see why, he asked, I answered.. Maybe I shouldn't have given him such a blunt answer but that's just me.

  7. #7
    Senior Member
    Join Date
    Apr 2008
    Posts
    2,008

    Default

    Quote Originally Posted by ʞɔɐɹʇ|ʞɔɐq View Post
    Well I did the nice thing, I looked but didn't touch, once I'm in I am afraid to say I loose interest pretty quick, for me its the thrill of the chase..
    Well to be fair, you went way past doing the nice/legal thing at the point you attempted to break into the network.
    -Monkeys are like nature's humans.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •