Results 1 to 3 of 3

Thread: No Sessions Created msfconsole db_autopwn

  1. #1
    Just burned his ISO AlexDaGr8est's Avatar
    Join Date
    Dec 2010
    Location
    Australia
    Posts
    10

    Default No Sessions Created msfconsole db_autopwn

    Hi guys,

    here's the problem I am having:
    i have a virtual xp sp2 machine in my LAN, I can successfully exploit it using:

    exploit/windows/smb/ms08_067_netapi

    I have port 445 (file and printer sharing) open on that machine (in Windows firewall)

    I have successfully setup MYSQL db in conjunction with metasploit.

    I do a thorough db_nmap scan, identifying the ports and the OS

    and then I utilise autopwn with these options -t -x -p -e.

    What I then see is that autopwn uses the exploit above (in Bold) but no session is created.

    My commands look something like this

    msf > db_driver mysql

    msf>db_nmap -A -O -r 192.168.122.51

    msf>db_autopwn -t -x -p -e

    Im just trying to get an understanding of why this exploit works when input manually as opposed to autopwn, especially when they both display the same exploit ?
    Something to do with autopwn payload, Im checking the options and advanced options and there doesnt really seem to be anything as to why this would work manually as opposed to autopwn?
    any ideas?
    I feel im doing everything correctly that I've read about from
    http://www.offensive-security.com/me...urity_Training
    and then utilised in my own virtual network environment, but to no avail.
    am I meant to be setting a db_payload ie setg (set global) etc?

    Help a nerd in need

    Alex

  2. #2
    Just burned his ISO
    Join Date
    Jul 2010
    Posts
    3

    Default Re: No Sessions Created msfconsole db_autopwn

    Make sure your framework is up to date:
    Code:
    cd /pentest/exploits/framework3
    svn update
    did you connect to the database from within metasploit before running your db_nmap command?

    Code:
    db_connect mysqluser:mysqlpass@localhost/xp_sp2
    where:
    mysqluser:mysqlpass is a user ID and a password for a mysql user you have previously created.
    xp_sp2 is the name of the database you would be creating.

    Code:
    db_nmap -A -O -r 192.168.122.51
    db_hosts
    db_hosts will show whether or not the database was populated with any data. If no data shows under the columns, your db is not connected properly.

    If db_hosts is populated, then run:

    Code:
    db_autopwn -p -e -r -t

  3. #3
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default Re: No Sessions Created msfconsole db_autopwn

    Time to start reading the vast amounts of documentation on metasploit.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

Similar Threads

  1. Fast-track (scan, setup, sessions) Not MSFConsole
    By micole in forum BackTrack Howtos
    Replies: 6
    Last Post: 02-11-2010, 06:41 PM
  2. Fast Track no sessions
    By kicker7734 in forum Beginners Forum
    Replies: 3
    Last Post: 02-10-2010, 10:29 AM
  3. fast-track, never has sessions
    By Mr.Happy in forum Beginners Forum
    Replies: 2
    Last Post: 02-09-2010, 11:33 PM
  4. Metasploit 3.3 - MsfConsole
    By regedit in forum OLD Newbie Area
    Replies: 0
    Last Post: 01-22-2010, 11:06 AM
  5. Metasploit 3.3 - MsfConsole
    By regedit in forum Angolo dei Newbie
    Replies: 0
    Last Post: 01-21-2010, 07:53 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •