Results 1 to 5 of 5

Thread: Metasploit exploits are not working at all

  1. #1
    Just burned their ISO
    Join Date
    Jan 2013
    Posts
    2

    Default Metasploit exploits are not working at all

    BackTrack 5 R3 is set up on a virtual machine.
    Apache started.
    I also downloaded SET(social-engineer toolkit).

    First of all, I deactivated all av in the machines in my LAN to perform the test. All of them are running on Windows 7.

    1)I launched the first pen-test with the autopwn exploit. It didn't work at all.
    2)I set up on SET an attack based on Java. It didn't work at all.
    3)I set up a java signed applet on msfconsole. It didn't work at all.

    1. it keeps sending data to the victim repeatedly. No shell is returned.

    2. It shows up java dialog box repeatedly. I(as victim) click on accept and run. And again it shows up java dialog box. I click on accept and run and the same thing happens again. No shell is returned to my BackTrack on virtual machine.

    3. When it doesn't show up java dialog box many times even when I(as victim) click on run, msfconsole on my BackTrack on virtual machine keeps waiting for the user to click on run on java dialog box forever and never returns a shell.

    Sorry for my english.


    Thanks

  2. #2
    Just burned their ISO
    Join Date
    Jan 2013
    Posts
    2

    Default Re: Metasploit exploits are not working at all

    Autopwn exploit

    Connection reset by peer.



  3. #3
    Just burned their ISO reaperz's Avatar
    Join Date
    Jan 2010
    Posts
    18

    Default Re: Metasploit exploits are not working at all

    They work. Make sure you are using them right and now firewalls or antivirus is blocking.
    Check on bypassing Antivirus

  4. #4
    Good friend of the forums zimmaro's Avatar
    Join Date
    Mar 2010
    Location
    milano
    Posts
    407

    Default Re: Metasploit exploits are not working at all

    Quote Originally Posted by paulwyz View Post
    BackTrack 5 R3 is set up on a virtual machine.
    Apache started.
    I also downloaded SET(social-engineer toolkit).

    First of all, I deactivated all av in the machines in my LAN to perform the test. All of them are running on Windows 7.

    1)I launched the first pen-test with the autopwn exploit. It didn't work at all.
    2)I set up on SET an attack based on Java. It didn't work at all.
    3)I set up a java signed applet on msfconsole. It didn't work at all.

    1. it keeps sending data to the victim repeatedly. No shell is returned.

    2. It shows up java dialog box repeatedly. I(as victim) click on accept and run. And again it shows up java dialog box. I click on accept and run and the same thing happens again. No shell is returned to my BackTrack on virtual machine.

    3. When it doesn't show up java dialog box many times even when I(as victim) click on run, msfconsole on my BackTrack on virtual machine keeps waiting for the user to click on run on java dialog box forever and never returns a shell.

    Sorry for my english.


    Thanks
    hi
    your "virtual-network" is set correctly?
    your "victim" is Vulnerable to attacks made?
    your "vict-java-version" is "" buggy "" FOR the exploit used?
    I did ulcune tests with my OLD-BASIC-TEST "machine-vunerabile" in my "" virtual-network "and they gave me success!
    SCREENSHOTS:
    # scan-localnet & ping "vict-ip" by PING NMAP
    http://imageshack.us/f/5/24238706.png/

    # java_applet_attack by SET
    http://imageshack.us/f/217/25617675.png/
    http://imageshack.us/f/96/45621086.png/

    # java_signed_applet by MSF
    http://imageshack.us/f/580/53787272.png/
    http://imageshack.us/f/24/48405732.png/
    http://imageshack.us/f/259/99487711.png/

  5. #5
    Just burned their ISO
    Join Date
    Jan 2012
    Posts
    13

    Default Re: Metasploit exploits are not working at all

    Are you sure Java is install correctly on the victim machine. It sounds like Java is not installed correctly to me. This will create the loop you're seeing.

    Quote Originally Posted by zimmaro View Post
    hi
    your "virtual-network" is set correctly?
    your "victim" is Vulnerable to attacks made?
    your "vict-java-version" is "" buggy "" FOR the exploit used?
    I did ulcune tests with my OLD-BASIC-TEST "machine-vunerabile" in my "" virtual-network "and they gave me success!
    SCREENSHOTS:
    # scan-localnet & ping "vict-ip" by PING NMAP
    http://imageshack.us/f/5/24238706.png/

    # java_applet_attack by SET
    http://imageshack.us/f/217/25617675.png/
    http://imageshack.us/f/96/45621086.png/

    # java_signed_applet by MSF
    http://imageshack.us/f/580/53787272.png/
    http://imageshack.us/f/24/48405732.png/
    http://imageshack.us/f/259/99487711.png/

Similar Threads

  1. metasploit password exploits
    By barbour in forum Beginners Forum
    Replies: 1
    Last Post: 08-09-2010, 06:08 PM
  2. add exploits to metasploit
    By dowload in forum Beginners Forum
    Replies: 3
    Last Post: 04-30-2010, 09:21 AM
  3. Can't run execute and exploits with Metasploit
    By Mucker in forum OLD Pentesting
    Replies: 6
    Last Post: 11-17-2009, 12:17 PM
  4. Creating metasploit exploits
    By purehate in forum OLD Specialist Topics
    Replies: 6
    Last Post: 05-06-2009, 12:12 PM
  5. Metasploit Exploits
    By playtowin in forum OLD Newbie Area
    Replies: 20
    Last Post: 02-16-2008, 05:53 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •