Page 6 of 9 FirstFirst ... 45678 ... LastLast
Results 51 to 60 of 90

Thread: Metasploiting for BT3 - Reverse TCP

  1. #51
    Member
    Join Date
    Jun 2008
    Posts
    56

    Default

    hi
    1)i will begin with a reverse shell inside the same network :
    i have 2 pc A and B
    A 192.168.0.4
    B 192.168.0.90
    B will setup the payload as(...LHOST=192.168.0.90 LPORT=4444...)
    if A execute the .exe on his pc B will obtain a shell
    that was the first scenario (A and B are in the same network ).

    the second scenario:
    A & B are not in the same network and they can't (A & B) control their router configuration for port forwarding... (their is many routers and switches...)
    all outgoing traffic are accepted for the A LAN but the incomming only 80
    the same rules for LAN B .

    if B go to www.whatismyip.com and find that his ip is 1.1.1.1
    and if A go to www.whatismyip.com and find that his p is 2.2.2.2
    NOW:
    B setup a .exe reverse shell with these configuration :
    (LHOST=1.1.1.1 LPORT=4444) and send it to A ,if A execute this .exe
    then he will connect to the 1.1.1.1 ip, but their is restriction for all port
    EXEPT 80 . ==>B will not obtain a shell.


    MY QUESTION IS:::
    if B find a proxy on the net that have ip 3.3.3.3:8888

    he can do such as this or similar???

    B send a reverse shell (payload) to A with these payload configuration:
    (...LHOST=3.3.3.3 LPORT=8888...) (the proxy ip address and open port of the proxy 8888)
    B will send the payload to A ;
    if A open the .exe now he will connect to the proxy on port 8888
    and then B will connect to that proxy to gain access to the A shell ???
    or similar to that technic???
    their is any tutorial for such these tunneling type??
    (((only for education purposes)))

  2. #52
    Member cr1spyj0nes's Avatar
    Join Date
    Sep 2008
    Posts
    164

    Default

    why dont you use port 80?

  3. #53
    Just burned his ISO
    Join Date
    Mar 2010
    Location
    VA
    Posts
    1

    Default

    I was truly amazed. Very informative. Thanks for your effort and work.

  4. #54

    Default

    Yes, using port 80 is fine, and Metasploit fully supports pretty well any type of tunneling you can think of. These will help:
    http://hkashfi.blogspot.com/2008/04/...with-port.html
    http://hkashfi.blogspot.com/2008/04/...h-port_23.html

    Someone posted them earlier.

    Quote Originally Posted by samer View Post
    hi
    1)i will begin with a reverse shell inside the same network :
    i have 2 pc A and B
    A 192.168.0.4
    B 192.168.0.90
    B will setup the payload as(...LHOST=192.168.0.90 LPORT=4444...)
    if A execute the .exe on his pc B will obtain a shell
    that was the first scenario (A and B are in the same network ).

    the second scenario:
    A & B are not in the same network and they can't (A & B) control their router configuration for port forwarding... (their is many routers and switches...)
    all outgoing traffic are accepted for the A LAN but the incomming only 80
    the same rules for LAN B .

    if B go to www.whatismyip.com and find that his ip is 1.1.1.1
    and if A go to www.whatismyip.com and find that his p is 2.2.2.2
    NOW:
    B setup a .exe reverse shell with these configuration :
    (LHOST=1.1.1.1 LPORT=4444) and send it to A ,if A execute this .exe
    then he will connect to the 1.1.1.1 ip, but their is restriction for all port
    EXEPT 80 . ==>B will not obtain a shell.


    MY QUESTION IS:::
    if B find a proxy on the net that have ip 3.3.3.3:8888

    he can do such as this or similar???

    B send a reverse shell (payload) to A with these payload configuration:
    (...LHOST=3.3.3.3 LPORT=8888...) (the proxy ip address and open port of the proxy 8888)
    B will send the payload to A ;
    if A open the .exe now he will connect to the proxy on port 8888
    and then B will connect to that proxy to gain access to the A shell ???
    or similar to that technic???
    their is any tutorial for such these tunneling type??
    (((only for education purposes)))

  5. #55
    Member
    Join Date
    Jun 2008
    Posts
    56

    Default

    thanks phoenix910 for the links
    BUT this is not my question :

    my question is that A and B are the 2 of them are in a internal network and B want to connect to A shell
    the links that you give me is B is directly behind the net (he have a public ip)
    and A have a private ip (not directly connected to the net )

    and about the port 80 i have posted that earlier and tell you that it don't work ;how can i use port 80 in reverse shell?
    my scenario can be done and thanks .

    and this is me who post them earlier
    and thanks again.

  6. #56
    Junior Member
    Join Date
    Apr 2008
    Posts
    36

    Default

    thank you very much rated

  7. #57

    Default

    Quote Originally Posted by samer View Post
    thanks phoenix910 for the links
    BUT this is not my question :

    my question is that A and B are the 2 of them are in a internal network and B want to connect to A shell
    the links that you give me is B is directly behind the net (he have a public ip)
    and A have a private ip (not directly connected to the net )

    and about the port 80 i have posted that earlier and tell you that it don't work ;how can i use port 80 in reverse shell?
    my scenario can be done and thanks .

    and this is me who post them earlier
    and thanks again.
    Connecting A and B on the internal network should be no challenge at all - it's simpler than over a WAN. Where's the issue there? And to use port 80 in a reverse shell, you set up the Metasploit shell (server) to be listening on port 80, as per the tutorial, and then give the client the executable, which tells it to connect back to the server on port 80, and will do so by a randomly chosen port, which Meterpreter will connect back through.

    ~phoenix910

  8. #58
    Member
    Join Date
    Jun 2008
    Posts
    56

    Default

    what i am trying to say is :
    A and B are the 2 on them in a internal network

    BUT: NOT in the same internal network
    how can A and B connect to each other, and B obtain the shell of A???
    how this can be done???
    thanks

  9. #59
    Member cr1spyj0nes's Avatar
    Join Date
    Sep 2008
    Posts
    164

    Default

    Quote Originally Posted by samer View Post
    what i am trying to say is :
    A and B are the 2 on them in a internal network

    BUT: NOT in the same internal network
    how can A and B connect to each other, and B obtain the shell of A???
    how this can be done???
    thanks
    is it just me or is this dude not making any not sence

    samer, give me A and B's ip address's
    Are they connect to the same router
    if not which of A and B are connect to routers?
    If A and B are both under the same router close down both firewalls and do i reverse connection
    if thay are not under the same router still close down both firewalls and edit your router so that port 80 is open for A and B ,
    if you are still having trouble PM me and il teach you how to crawl,
    I would rather be hated for what i am,
    Then loved for what i am not.

  10. #60
    Member
    Join Date
    Jan 2010
    Location
    The new forums
    Posts
    462

    Default

    Quote Originally Posted by samer View Post
    what i am trying to say is :
    A and B are the 2 on them in a internal network

    BUT: NOT in the same internal network
    how can A and B connect to each other, and B obtain the shell of A???
    how this can be done???
    thanks
    So they are on different subnets? Can A and B see/ping each other? Otherwise you have a routing issue

Page 6 of 9 FirstFirst ... 45678 ... LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •