Page 1 of 2 12 LastLast
Results 1 to 10 of 19

Thread: java_signed_applet

Hybrid View

  1. #1
    Junior Member
    Join Date
    Aug 2009
    Posts
    27

    Default java_signed_applet

    how to do it with external IP !!!

    if i edited my DMZ to pass any connection to my local IP

    LOCAL IP : 10.0.0.6
    EXTERNAL IP : xx.xx.xx.xx

    what settings should i do to make it reverse right to my LOCAL IP

    i've tried :

    LPORT 443
    SRVPORT 80
    LHOST external IP

    didn't work !!

  2. #2
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: java_signed_applet

    Check if you can actually reach your ports. portforward.com has a free tool do do this. http://portforward.com/help/portcheck.htm
    You can run it with wine on your bt machine.
    Some ISP's block certain ports so...
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  3. #3
    Junior Member
    Join Date
    Aug 2009
    Posts
    27

    Default Re: java_signed_applet

    Quote Originally Posted by LHYX1 View Post
    Check if you can actually reach your ports. portforward.com has a free tool do do this. http://portforward.com/help/portcheck.htm
    You can run it with wine on your bt machine.
    Some ISP's block certain ports so...
    yes i can do port forwarding very well ....but what settings should i make ! ?

    the target should connect to my external IP with port 8080 for example ...because its browser exploit i think i should make it port 80 or 8080

    well to make my router configuration page work normal i should make it 8080 ....then im gonna forward the port 8080 to my local ip 10.0.0.6

    now from my router part is done ...

    now Metasploit settings :

    LHOST :
    SRVHOST :
    SRVPORT :
    LPORT :

    ??

  4. #4
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: java_signed_applet

    LHOST = external ip
    SRVHOST = local ip
    LPORT && SRVPORT can be any port as long as they are forwarded correctly,
    there's nothing else running on those ports and your ISP doesn't block them.

    so if you use 8080 for your server -> forward 8080 to your local ip like you said.
    And if you use 443 for your payload, forward 443 to your local ip as well.
    Last edited by LHYX1; 03-22-2012 at 02:40 AM.
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  5. #5
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: java_signed_applet

    I never used a DMZ for this king of stuff. Plus, using a DMZ if you don't know what you're doing could be disastrous.
    Just forward incoming port 8080 on wan (for instance) to port 9090 in LAN.
    The first one will be LPORT in the payload, the second one will be LPORT in the listener.

    @LHYX1 : it doesn't have to be the same ports
    Running both KDE and GNOME BT5 flawlessly. Thank you !

  6. #6
    Junior Member
    Join Date
    Aug 2009
    Posts
    27

    Default Re: java_signed_applet

    Quote Originally Posted by comaX View Post
    I never used a DMZ for this king of stuff. Plus, using a DMZ if you don't know what you're doing could be disastrous.
    Just forward incoming port 8080 on wan (for instance) to port 9090 in LAN.
    The first one will be LPORT in the payload, the second one will be LPORT in the listener.

    @LHYX1 : it doesn't have to be the same ports

    shouldn't it be 8080 not any other port for wan forwarding ? because java_signed working on browser ?

    and u saying that LPORT is the wan forwarding port for example 8080

    so

    NAT settings : 10.0.0.6 8080 8080
    and another NAT entry
    : 10.0.0.6 443 443 ??

    and then at metasploit LPORT : 8080 ?
    SRVPORT 443 ?

  7. #7
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: java_signed_applet

    @LHYX1 : it doesn't have to be the same ports
    I know It was just an example
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  8. #8
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: java_signed_applet

    You can run a website on any port Then you just enter http://ip: port in your browser. That's all
    And yes you forward 2 ports. One for the payload and one for the server

    so for example 8080 for the server and 443 for the payload.
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  9. #9
    Junior Member
    Join Date
    Aug 2009
    Posts
    27

    Default Re: java_signed_applet

    Quote Originally Posted by LHYX1 View Post
    You can run a website on any port Then you just enter http://ip: port in your browser. That's all
    And yes you forward 2 ports. One for the payload and one for the server

    so for example 8080 for the server and 443 for the payload.
    thanks buddy for enlighting me im gonna try it out and see wat happens

  10. #10
    Good friend of the forums comaX's Avatar
    Join Date
    Feb 2010
    Location
    Paris, France
    Posts
    338

    Default Re: java_signed_applet

    I'm on weekend so I can't do something that would be swell : a nice grahic chart explaining all that since you're not the first to struggle with it. If I'm still feeling up to it when I come back home, I'll do something. So, expect it for tuesday/wednesday. Again, don't take my word for it.
    Running both KDE and GNOME BT5 flawlessly. Thank you !

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •