Have a problem with Java applet method

[defiks]

Hello!

I have a problem with Java applet method all is OK! but when i test this method on my notebook i said http:// IP ( public ip ) all is ok i connected after click Run ...

And on BackTrack 4 i don't see sessions. Why ?

[sickness]

Let me get this straight ? You are trying to run a java applet attack over the internet ? That does not work so easy, you might want to check out the HowTo section, it might solve your problem

[defiks]

Yes i know my english is very bad !

When i start SET and connect with my notebook all is OK ! i have shell but when my notebook is outside my internet ( no router ) I can't connect with notebook.

[sickness]

Yes i know my english is very bad !

When i start SET and connect with my notebook all is OK ! i have shell but when my notebook is outside my internet ( no router ) I can't connect with notebook.

Well for this attack to be successful over the internet you will have to learn a bit on how things like that should be done, my advice is to check the HowTo section of this forum and learn what port forwarding is.

[defiks]

ok differently

I know port is 80 !.

and i have public ip for port 80. I make all in router settings.

I placed everything in BackTrack .

everyone can connect, but i don't have sessions. ( shell)

[sickness]

Well it works perfect here, I suggest you try and read the manual and the nice guide coming with SET 1.0

[iproute]

You will need to forward 80 so the cloned/fake website is available publicly(sounds like you have), and also need to forward the port for your payload. Whether your are binding a shell to a port or using a reverse connection payload, that port would need to be open to the internet. The default for many payloads is 4444. After configuring your port forwarding, you can confirm the port to be open using nmap.

You can either nmap your public IP, or better yet, use
Nmap Online.

I have been responding to a number of posts lately about using metasploit over the internet. I want all to know I do not condone illegal activity. Make sure you have authorization for any of the processes you are performing, and are NOT breaking any laws. It is important educationally to understand these attacks as performed over the internet, but this forum and it's moderators will not tolerate malicious behaviors.

[sickness]

I suggest we leave @defiks to do some study on it's own, and as I pointed out in my previous post all the information you need about this can be found in the .pdf guide from SET

[iproute]

You're probably right sickness.... I spent too long in my previous position of customer helpdesk(I work for an ISP) and helping people was ground into me

I suggest we leave @defiks to do some study on it's own, and as I pointed out in my previous post all the information you need about this can be found in the .pdf guide from SET

Hmm, I'll have to take a look at that documentation. I have not had the pleasure of reading the SET pdf guide. I learned it by using it. But we all love rel1k's contributions!