Some Questions about Metasploit - General Security Discussions

Hardcore-Gabber

I want to ask what is the best method to learn how to exploit vulnerable apllications with metasploit .. or if an exploit is not working how to make to work again ..

does not matter if tke time . but i want to be sure lets say that the source will be an ebook .. then if i read that ebook then i will now about 80-90 % of metasploit /..

I have founde allot of Ebooks but i am not sure what is the best .. or if is worth to read ..

I am using metasploit 1 month ago but i have got allot of errors .. i am sure that i have done something wrong .. only that i dont know what .. that is the reason that i want to learn all about metasploit //

Sh3llc0d3

What are the errors etc your getting?

Hardcore-Gabber

I tried Exim Smtpd 4.69 and some Ftp Exploit and all the time i am getting Timeout error .. dont metter what site i am testing or what exploit all the time i am gettin Timeout

chroniccommand

Hm it could be a number of things. Here is what I usually do when something goes wrong with networking//exploits.
Fire up wireshark and start capturing and check out what happens when you try to send the payload // receive.

Sh3llc0d3

It might be worthwhile you demonstrating exactly what you're doing when using metasploit.

said:

Hm it could be a number of things. Here is what I usually do when something goes wrong with networking//exploits.
Fire up wireshark and start capturing and check out what happens when you try to send the payload // receive.

Wireshark is great, but completely useless to someone who doesn't know what they're looking at/for. With people insisting on the use of packet analysis tools I'll try and churn out a tutorial on it's use as it does need a tutorial.

chroniccommand

said:

It might be worthwhile you demonstrating exactly what you're doing when using metasploit.

said:

Hm it could be a number of things. Here is what I usually do when something goes wrong with networking//exploits.
Fire up wireshark and start capturing and check out what happens when you try to send the payload // receive.

Wireshark is great, but completely useless to someone who doesn't know what they're looking at/for. With people insisting on the use of packet analysis tools I'll try and churn out a tutorial on it's use as it does need a tutorial.

I'll write one on debugging exploit problems with wireshark unless you wanna do the honors :p

Hardcore-Gabber

I make some screenshots .. just 5 minutes ..

chroniccommand

said:

I'll make some screenshots. Just give me 5 minutes.

Fixed some grammar mistakes :p

Hardcore-Gabber

1. I select Reverse_perl

http://img17.imageshack.us/img17/6568/step1kh.png

2. In LHOST = my ip adress .. in RHOST = the servers ip adress in RPORT=the port that is sung the server for Exim LPORT= the port that i will listen with Netcat .

http://img840.imageshack.us/img840/2539/step2c.png

I am getting this error and the TimeOut error .. also i have tried a Mocrosoft Terminal Service exploit and i got the same TimeOut error...

http://img855.imageshack.us/img855/3439/step3.png

chroniccommand

said:

1. I select Reverse_perl

http://img17.imageshack.us/img17/6568/step1kh.png

2. In LHOST = my ip adress .. in RHOST = the servers ip adress in RPORT=the port that is sung the server for Exim LPORT= the port that i will listen with Netcat .

http://img840.imageshack.us/i/step2c.png/

I am getting this error and the TimeOut error .. also i have tried a Mocrosoft Terminal Service exploit and i got the same TimeOut error...

http://img855.imageshack.us/i/step3.png/

Alright try using msfconsole not msfgui. Also, try this:
Assuming the target server is 91.91.91.92
Assuming the target port is 9191
Assuming LHOST(Local IP address) is 192.168.1.9


use exploit/thexploityou'reusing
set RHOST 91&#46;91&#46;91&#46;92
set LHOST 192&#46;168&#46;1&#46;9
set RPORT 9191
exploit

Now this may not be an absolute solution to your problem. There may be other problems affecting it. Such as the port not being open that you're listening on.

Hardcore-Gabber

Ok .. thanks once i get at home i will try it ..

m0rph

refrain from using metasploit in windows at all. use a vm of some linux distro with metasploit, forward the port you plan on listening on, on your router (or just put yourself in the dmz, if you don't know how to do this just ask), make sure either your firewall is off, or that metasploit is installed as a service, otherwise it'll be pointless to even have it running.

I can almost guarantee you it's not working because of some kind of network misconfiguration, run through all of the things I've listed above and keep trying, if none of these fix your problem, then don't use metasploit for now. Make sure you're running a packet analyzer, and read through the timeout packets you are getting, see what destination address is giving you the timeout, because it might not be the server you're attacking that is giving you the timeout, it could be any of the things I've listed above, your ISP might be blocking certain ports for you, they might be behind a firewall, you never truly know until you exhaust all options.

also, read this, I can't stress enough how important it is to read the documentation on the tools you use.


http&#58;//www&#46;offensive-security&#46;com/metasploit-unleashed/Metasploit_Unleashed_Information_Security_Training

Hardcore-Gabber

Thanks . i will try it .. i hope this will help .

Xin

said:

Thanks . i will try it .. i hope this will help .

How you doing with metasploit finding it okay?

Howdy, Stranger!

Top Posters

Who's Online (1)