Results 1 to 5 of 5

Thread: metasploit/set

  1. 11-02-2010, 12:10 PM #1
    parrotface
    parrotface is offline
    Senior Member
    Join Date
    Jun 2007
    Location
    UK
    Posts
    175

    Default metasploit/set

    Cant get meterpreter session ether using SET or Metersploit.
    e.g. using on Set BT4-r1
    option 2 Web attack vector
    2 Metersploit Browser Exploit
    2 Site Clone
    9 Ms exp "Aurora"
    2 reverse-tcp meterpreter
    server started

    Client - Windows Vsta - Firefox browser
    enter http://192.168.1.186:31338
    gets cloned site OK
    starts Dowloading - then just stays in that state.

    Back on Attack machine
    server started
    Sending stage (749056 bytes) to 192.168.1.117
    then just stays in that state.

    The above is just one example, have tried many ways as shown in metasploit unleashed and various video's etc all seem to hang. Also tried with AV disabled.
    any pointers please would be appreciated. I don't expect to be spoon fed but I am tearing my hair out (the little what's left). The madening point is I have had it working months ago. I can get a session NO problem if I load the exploit on the victims machine, I am now trying to make the victim download it.
    many many thanks
  2. 11-02-2010, 03:42 PM #2
    sickness
    sickness is offline
    Administrator sickness's Avatar
    Join Date
    Jan 2010
    Location
    Behind the screen.
    Posts
    2,921

    Default Re: metasploit/set

    Well you honestly don't have any idea what you are doing.

    The exploit is called "Microsoft Internet Explorer "Aurora" Memory Corruption (MS10-002)" if it's an exploit for IE why are you using Firefox as the browser ?

    Do you have a firewall ? Are you behind a router ?
    If you can get a session if you load the payload into the victims PC and run it than the problem is the exploit. So I would suggest you read up on exploits before actually using them.
    Last edited by sickness; 11-02-2010 at 03:45 PM.
    Back|track giving machine guns to monkeys since 2007 !

    Do not read the Wiki, most your questions will not be answered there !
    Do not take a look at the: Forum Rules !
  3. 11-02-2010, 06:47 PM #3
    killadaninja
    killadaninja is offline
    Very good friend of the forum killadaninja's Avatar
    Join Date
    Oct 2007
    Location
    London, United Kingdom.
    Posts
    526

    Thumbs up Re: metasploit/set

    Quote Originally Posted by sickness View Post
    The exploit is called "Microsoft Internet Explorer "Aurora" Memory Corruption (MS10-002)" if it's an exploit for IE why are you using Firefox as the browser ?
    Yeh exploiting FF with IE exploits is always going to be a problem for sure. If you want to know why (whilst using the wrong exploit) you see your msf console hanging, then search up "metasploit stager".
    Sometimes I try to fit a 16-character string into an 8–byte space, on purpose.
  4. 11-02-2010, 08:13 PM #4
    Archangel-Amael
    Archangel-Amael is offline
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default Re: metasploit/set

    Key words for a search engine = Metasploit Unleashed
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.
  5. 11-02-2010, 08:43 PM #5
    parrotface
    parrotface is offline
    Senior Member
    Join Date
    Jun 2007
    Location
    UK
    Posts
    175

    Default Re: metasploit/set

    Thanks for the response
    Key words for a search engine = Metasploit Unleashed
    I have been following metasploit unleashed and got it wrong.
    Do you have a firewall ? Are you behind a router ?
    I am on my LAN and also tried turning off the fire wall
    I see I have mixed FF & IE in my example
    Thanks I will now go back to the drawing board and start again. many thanks for the pointers
« Previous Thread | Next Thread »

Similar Threads

  1. [metasploit] - MetaSploit nao atualiza
    By warlockthefeared in forum Suporte Software
    Replies: 38
    Last Post: 03-09-2011, 11:52 AM
  2. [Howto] [Metasploit] Introducao ao Metasploit - Parte 01
    By espreto in forum Tutoriais e Howtos
    Replies: 16
    Last Post: 10-13-2010, 04:21 PM
  3. metasploit o non metasploit, questo è il problema!
    By eqweo in forum Discussioni Generali
    Replies: 2
    Last Post: 01-14-2010, 12:16 AM
  4. Help with Metasploit
    By blackcabs in forum OLD Newbie Area
    Replies: 4
    Last Post: 08-25-2008, 06:27 PM
  5. Can't run Metasploit
    By Herztier in forum OLD BT3beta Software related issues
    Replies: 5
    Last Post: 12-19-2007, 08:12 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules