Results 1 to 6 of 6

Thread: n00b needing some pen testing tips! (links?)

  1. #1
    Just burned his ISO
    Join Date
    Sep 2009
    Posts
    6

    Default n00b needing some pen testing tips! (links?)

    ***EDITED***I read through a lot of metasploit tuts/concepts so I have pretty good idea for what I'm going for.

    I'm trying to do two different things.
    1. Gain remote access to a Vista pc in the same LAN as me.
    2. Gain access to my friends Server (Running Server 2003) over a WAN.

    Can Metasploit help me gain access to both these machines?

  2. #2
    Junior Member loop4me's Avatar
    Join Date
    Mar 2008
    Posts
    54

    Default

    Code:
    Can Metasploit help me gain access to both these machines?
    Yes.

    Code:
    I'm trying to do two different things.
    1. Gain remote access to a Vista pc in the same LAN as me.
    2. Gain access to my friends Server (Running Server 2003) over a WAN.
    I don't think it's a good for you if your post start like this ,on bt forum.

  3. #3
    Good friend of the forums
    Join Date
    Jun 2008
    Posts
    425

    Default

    ***EDITED***I read through a lot of metasploit tuts/concepts so I have pretty good idea for what I'm going for.

    I'm trying to do two different things.
    1. Gain remote access to a Vista pc in the same LAN as me.
    2. Gain access to my friends Server (Running Server 2003) over a WAN.

    Can Metasploit help me gain access to both these machines?
    With 1) password guesiing,MITM attacks,software exploits
    With 2), you will have to have the router setup a dmz or port fowarding(virtual servers etc), to let your computer connect to it, and try to find a weakness in the deamons on the server, or another machine on the lan that you can forward to the server, like a web cleint that connects to you computer, and upload fpipe.
    AND the usual read your ISP TOS.

  4. #4
    Member
    Join Date
    Jan 2010
    Location
    The new forums
    Posts
    462

    Default

    Quote Originally Posted by Aarhem View Post
    ***EDITED***I read through a lot of metasploit tuts/concepts so I have pretty good idea for what I'm going for.

    I'm trying to do two different things.
    1. Gain remote access to a Vista pc in the same LAN as me.
    2. Gain access to my friends Server (Running Server 2003) over a WAN.


    Can Metasploit help me gain access to both these machines?
    Sounds like you're trying to mess with equipment that's not yours.

  5. #5
    Just burned his ISO
    Join Date
    Sep 2009
    Posts
    6

    Default

    Quote Originally Posted by Lincoln View Post
    Sounds like you're trying to mess with equipment that's not yours.
    I've read the rules. I'm currently using the vista machine (my roommates... he is sitting right next to me watching tv. lol) and the server is my friends machine that I go to school with. I already have remote access to it, and I've asked permission to try and pen test it.

  6. #6
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default

    Id suggest you read the Metasploit user guide, try some Metasploit Tutorials, and maybe even have a look at this:

    Metasploit Unleashed - Mastering the Framework

    And strictly speaking, what you are doing doesnt qualify as Pen Testing. Pen Testing is a professional activity that involves systematically testing a set of systems for security weaknesses using defined and repeatable processes, and then reporting on the results providing risk ratings and remediation advice.

    What you want to do is more properly referred to as "exploiting" the systems.

    I would also accept the term "pwning"....
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •