Results 1 to 4 of 4

Thread: armitage not showing any hosts

  1. #1
    Just burned his ISO
    Join Date
    Jan 2011
    Posts
    11

    Default armitage not showing any hosts

    GENERAL ABOUT PROBLEM:
    helo, i have simple problem with armitage. after scaning hosts in shows me only router but no clients (my 2 laptops are connected to my netowork)

    HARDWARE AND SOFTWARE INFORMATION:
    i have acer aspire 5720zg with windows xp sp3 but i use backtrack 5 r1 in boot mode (not installed) and connect to my wireless network with Alfa AWUS036H 1000mW

    DETAILED PROBLEM DESCRIPTION:
    here is what im doing in steps
    1. connect to my wireless network(WEP protected) with "wicd network manager" in BT5

    2. open konosle and type "msfupdate"
    (here is log):

    root@root:~# msfupdate[*][*] Attempting to update the Metasploit Framework...[*]

    svn: /opt/framework/lib/libssl.so.0.9.8: no version information available (required by /opt/framework/lib/libserf-0.so.0)
    svn: /opt/framework/lib/libcrypto.so.0.9.8: no version information available (required by /opt/framework/lib/libserf-0.so.0)
    svn: /opt/framework/lib/libssl.so.0.9.8: no version information available (required by /opt/framework/lib/libserf-0.so.0)
    svn: /opt/framework/lib/libcrypto.so.0.9.8: no version information available (required by /opt/framework/lib/libserf-0.so.0)
    A external/source/javapayload/src/metasploit/PayloadTrustManager.java
    U external/source/javapayload/src/metasploit/Payload.java
    U external/source/meterpreter/source/extensions/priv/server/passwd.c
    U external/source/meterpreter/source/extensions/priv/server/elevate/kitrap0d.c
    U external/source/meterpreter/source/extensions/stdapi/server/fs/search.c
    A external/source/meterpreter/source/extensions/lanattacks
    A external/source/meterpreter/source/extensions/lanattacks/dhcpserv.cpp
    A external/source/meterpreter/source/extensions/lanattacks/TFTPserv.h
    A external/source/meterpreter/source/extensions/lanattacks/dhcpserv.h
    A external/source/meterpreter/source/extensions/lanattacks/lanattacks.c
    A external/source/meterpreter/source/extensions/lanattacks/lanattacks.h
    A external/source/meterpreter/source/extensions/lanattacks/TFTPserv.cpp
    U external/source/meterpreter/source/screenshot/screenshot.c
    U external/source/meterpreter/workspace/meterpreter.sln
    A external/source/meterpreter/workspace/ext_server_lanattacks
    A external/source/meterpreter/workspace/ext_server_lanattacks/ext_server_lanattacks.vcproj
    U external/source/gui/msfguijava/nbproject/project.properties
    U external/source/gui/msfguijava/src/msfgui/MainFrame.java
    U external/source/gui/msfguijava/src/msfgui/RpcConnection.java
    U external/source/gui/msfguijava/src/msfgui/ProcessList.java
    U external/source/gui/msfguijava/src/msfgui/DraggableTabbedPane.java
    U external/source/gui/msfguijava/src/msfgui/MainFrame.form
    A external/source/gui/msfguijava/src/msfgui/MsgRpc.java
    U external/source/gui/msfguijava/src/msfgui/ProcessList.form
    U external/source/gui/msfguijava/src/msfgui/OpenConnectionDialog.java
    A external/source/gui/msfguijava/src/msfgui/XmlRpc.java
    U external/source/gui/msfguijava/src/msfgui/PayloadPopup.java
    U external/source/gui/msfguijava/src/msfgui/SessionCommand.java
    U external/source/gui/msfguijava/src/msfgui/OpenConnectionDialog.form
    U external/source/gui/msfguijava/src/msfgui/ModuleInfoWindow.java
    U external/source/gui/msfguijava/src/msfgui/MsfguiApp.java
    U external/source/gui/msfguijava/src/msfgui/PayloadPopup.form
    U external/source/gui/msfguijava/src/msfgui/MeterpFileBrowser.java
    U external/source/gui/msfguijava/src/msfgui/InteractWindow.java
    U external/source/gui/msfguijava/src/msfgui/DbConnectDialog.java
    U external/source/gui/msfguijava/src/msfgui/MeterpFileBrowser.form
    U external/source/gui/msfguijava/src/msfgui/InteractWindow.form
    U external/source/gui/msfguijava/src/msfgui/resources/OpenConnectionDialog.properties
    U external/source/gui/msfguijava/src/msfgui/resources/PayloadPopup.properties
    U external/source/gui/msfguijava/src/msfgui/MsfguiLog.java
    A external/source/gui/msfguijava/msgpack-0.5.1-devel.jar
    A external/source/pxesploit
    ....
    ....
    ....
    ....

    U data/meterpreter/screenshot.x64.dll
    U data/meterpreter/ext_server_incognito.dll
    U data/meterpreter/metsrv.x64.dll
    U data/meterpreter/elevator.x64.dll
    U data/meterpreter/ext_server_sniffer.dll
    A data/sql/migrate/20110928101300_add_mod_ref_table.rb
    U data/sql/migrate/20110730000001_add_initial_indexes.rb
    A data/sql/migrate/20111011110000_add_display_name_to_reports_table.r b
    A data/sql/migrate/20110812000001_prune_indexes.rb
    A data/sql/migrate/20110922000000_expand_notes.rb
    A data/exploits/CVE-2011-0257.mov
    A data/exploits/pxexploit/update0
    U data/exploits/pxexploit/update4
    A data/exploits/pxexploit/updatecustom
    A data/exploits/CVE-2011-2882
    A data/exploits/CVE-2011-2882/nsepa.ocx
    A data/exploits/CVE-2010-0480.avi
    U msfcli
    Updated to revision 14148.

    3. in new konsole i type "armitage" and click on "start MFS" leaving all fields default

    4. it opens me armitage and metasploit version 4.1.2
    (here is metasploit log):

    [-] WARNING! The following modules could not be loaded!
    [-] /opt/framework/msf3/modules/post/windows/gather/dig.rb: SyntaxError (eval):56: Invalid next

    , ,
    / \
    ((__---,,,---__))
    (_) O O (_)_________
    \ _ / |\
    o_o \ M S F | \
    \ _____ | *
    ||| WW|||
    ||| |||


    =[ metasploit v4.1.2-dev [core:4.1 api:1.0]
    + -- --=[ 756 exploits - 397 auxiliary - 111 post
    + -- --=[ 228 payloads - 27 encoders - 8 nops
    =[ svn r14148 updated today (2011.11.03)

    5. i start scan for host: -host -nmap scan -quick scan(os detect)
    it shows me only router as printer but not my 2 laptop that are connected to my network even in log there is MAC address of that 2 laptops
    (here is log):

    msf > db_nmap -sV -T5 -O -F --version-light 192.168.0.1/24[*] Nmap: Starting Nmap 5.51SVN ( http://nmap.org ) at 2011-11-03 11:10 EDT[*] Nmap: Nmap scan report for 192.168.0.1[*] Nmap: Host is up (0.0040s latency).[*] Nmap: Not shown: 97 filtered ports[*] Nmap: PORT STATE SERVICE VERSION[*] Nmap: 23/tcp closed telnet[*] Nmap: 80/tcp open tcpwrapped[*] Nmap: 8080/tcp closed http-proxy[*] Nmap: MAC Address: 00:1E:6B:7D:97:15 (Scientific Atlanta, A Cisco Company)[*] Nmap: Device type: broadband router|WAP|switch|printer|firewall|game console[*] Nmap: Running (JUST GUESSING): Thomson embedded (98%), Netgear embedded (98%), Motorola embedded (95%), Scientific Atlanta embedded (95%), HP embedded (92%), Barracuda Networks embedded (91%), Cisco Linux 2.6.X (90%), Nintendo embedded (90%)[*] Nmap: Aggressive OS guesses: Thomson TCW710 wireless cable modem (98%), Netgear CG814WG v2 or Thomson TWG870U wireless cable modem (98%), Netgear WGR614v7 wireless broadband router (97%), Motorola SURFboard SB5101E or EPC2203 cable modem (95%), HP ProCurve 2524 switch or 9100c Digital Sender printer (92%), HP LaserJet P2055dn printer (91%), Barracuda Spam Firewall model 400 (91%), Cisco AP541N WAP (Linux 2.6.21, MIPS) (90%), Nintendo Wii game console (90%), Crestron XPanel control system (89%)[*] Nmap: No exact OS matches for host (test conditions non-ideal).[*] Nmap: Network Distance: 1 hop[*] Nmap: Nmap scan report for 192.168.0.11[*] Nmap: Host is up (0.028s latency).[*] Nmap: All 100 scanned ports on 192.168.0.11 are filtered[*] Nmap: MAC Address: 00:90:4B:ED5:64 (GemTek Technology Co.)[*] Nmap: Too many fingerprints match this host to give specific OS details[*] Nmap: Network Distance: 1 hop[*] Nmap: Nmap scan report for 192.168.0.12[*] Nmap: Host is up (0.000051s latency).[*] Nmap: All 100 scanned ports on 192.168.0.12 are closed[*] Nmap: Too many fingerprints match this host to give specific OS details[*] Nmap: Network Distance: 0 hops[*] Nmap: OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .[*] Nmap: Nmap done: 256 IP addresses (3 hosts up) scanned in 52.89 seconds

    6. here is also log in konsole that is open:

    root@root:~# armitage
    Warning: /root at preferences.sl:309
    Warning: No collaboration server is present! at collaborate.sl:94
    Warning: Writing to: /root at armitage.sl:201
    Warning: refreshTargets was called at targets.sl:336

    ok, i found my problem. firewall was turned on. but how to nmap scan firewall hosts or bypass firewall with metasploit?
    Last edited by g0tmi1k; 11-08-2011 at 10:05 AM. Reason: Merged

  2. #2
    Good friend of the forums scottm99's Avatar
    Join Date
    Feb 2010
    Location
    underwater
    Posts
    371

    Default Re: armitage not showing any hosts

    In my opinion, getting around/through firewalls is as much art as science. I don't think anyone can really say "do x, then y, and that will get you through". With nmap, try using the -f & -g flags...along with the --scanflags option to set specific TCP flags like URG, RST, FIN, etc. You might also have a look at nmap.org/docs for reference. I'd concentrate more on using nmap to thoroughly scan/understand your target, then use metasploit as your entry tool once weaknesses are found.
    If I could figure out how to scuba dive & hack at the same time, there would be nothing I couldn't do...

  3. #3
    My life is this forum Snayler's Avatar
    Join Date
    Jan 2010
    Posts
    1,418

    Default Re: armitage not showing any hosts

    Just passing by to say that some wireless routers have an option to block WAN to WAN and LAN to LAN communications, meaning that any device connected to the network will only be able to communicate with the router. It doesn't seem like your case, but i thought the info could be useful for others searching for this problem.

  4. #4
    Good friend of the forums scottm99's Avatar
    Join Date
    Feb 2010
    Location
    underwater
    Posts
    371

    Default Re: armitage not showing any hosts

    Thanks for the info, Snayler. I could see that option being useful in highly-segmented areas (e.g. keeping a "walled garden" around a guest wifi access point).
    Last edited by scottm99; 11-25-2011 at 07:45 PM.
    If I could figure out how to scuba dive & hack at the same time, there would be nothing I couldn't do...

Similar Threads

  1. Ettercap not scanning for hosts
    By Hellmasker in forum BackTrack 5 Beginners Section
    Replies: 13
    Last Post: 02-01-2013, 04:54 PM
  2. ettercap all hosts
    By rashwan in forum Beginners Forum
    Replies: 3
    Last Post: 02-19-2010, 05:57 AM
  3. Can 2 Hosts Behind NAT Speak With Each other?
    By imported_Deathray in forum OLD General IT Discussion
    Replies: 2
    Last Post: 04-14-2009, 12:34 PM
  4. Ettercap scanning new hosts
    By 1shot_1kill in forum OLD Newbie Area
    Replies: 3
    Last Post: 12-14-2008, 10:14 PM
  5. airodump not showing hosts
    By Marco85 in forum OLD Newbie Area
    Replies: 3
    Last Post: 08-19-2008, 06:18 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •