Hack a IP with Armitage!
This Does NOT show how to install armitage, go to http://fastandeasyhacking.com to learn how to install.
Prerequisites:
Armitage and Metasploit installed.
A MySql user, database, and password.
Armitage allready set up.
Begin!
First you will need to start Armitage.
In the terminal type:
>>>sudo armitage
![[Image: armitage1.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sww0kOaxaWW4glg9frUy7ltZclkgo5dxfWKg_UUsO_pYLejdWczGR2wkYGYzfpoQTWqGv5Z7mHPZHFvGObNEzV9lWCwmtA9-RnCwI5455zGNEtYEvgm8IM=s0-d)
Now, a login box will appear.
Put your mysql information in it:
host: 127.0.0.1 (your localhost)
Port: 55553 (metasploit's default port)
User: your mysql username for the database you will use for armitage
Pass: the password for the mysql user
Hit connect
![[Image: armitage2.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vNKmNzZNIqB8ebJw7a3FuL365dIxvqtjk9PleBdzjCkh3JaSUcTrRjM5W_S_QsGBvjBSNPAdmbxUxKqKBX1qTTbM8RXn4vfZzLdO7YwhKRDu4v_h-R3W2E=s0-d)
A new box will pop up saying something such as:
"A metasploit RPC server is not running"
Click on Yes.
A loading box will appear which says "Java Connection refused"
![[Image: armitage3.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tWcOQrRlO_vgp6sHsqL8ZEGkA_CSZPaCvEsdcV-v0fNYVcohwkYOCLeoKWVAcxfLiF3AAu22pWZryGND5zH3RkTQ4pDmwMW5vrUG665sfLIALkyQ=s0-d)
That is normal, armitage is gathering all the ruby plugins into armitage's GUI.
Armitage will look somewhat like this:
![[Image: armitage4.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sxk-J-fEINM4vM10xi9bd3y1aQX2Mi8U5QQBlymPcx37tBGXk6XUE7zKTf9PZORwwK4kUgoEmQVVMtVwFulJw7zedpS7gsZsGzr3t2NKlDFBHJA7YEsKA=s0-d)
Now, I have a windows XP SP2 running on a Virtual Machine with the ip of 192.168.0.14
To scan your network for vulnerable hosts, do this:
On the tool bar> Hosts>Nmap Scan> Quick OS Detect (in this case you don't need to do any long scans as we will be targetting a Win XP)
now type the ROUTER'S IP and the whole network such as: 192.168.1.1/24 ( /24 is the ip range on the network)
After finding all the PC's on the network, you should see one appear that you like
![[Image: armitage5.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_t0rBp6D9q45BBZ-MF5DsiRR78KSzbCXAgbjMclpeHqfZ7jYqwSNyLcMVAhJ-JiHAHjlJHihXWofQokVY5Z-LGdAn794k4uJVJrVZwnAtBv4luzrnY=s0-d)
Now, click on that target, and select Toolbar> Attacks> Find attacks.
It will look for all attacks for that OS.
Exploit time!
Right click on the target. A new menu will appear called: Attack.
You can try any of those attacks, or use the SMB attack as we will.
Click on Attack>SMB>ms08_067_netapi
This will appear:
![[Image: armitage6.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_sDd3n60DoP8AkKjY35kROpmTMsGIf21UPDZ5OJb0jTi54XS6-MUsqzY9Jx3_Ep3MvzQu_AIJ29OApl6LqtuarSL0FAF3pQKYOR-MmX-TymZKCHuBLzfj4=s0-d)
Check the Reverse Connection, and unless you know what you are doing, you don't need to change any other items.
Click Launch.
Your Console will run until it shows this:
![[Image: armitage7.png]](https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uvEbfpvnUQGLePcx6L5GfmzxLOPx9BBwrvc65AkYyXUvolVOn-nvWRIg2X0DKURxGZ4-pzb4Q88Z05X07ZlTFAFzRceLXcPGAjIlU0fPNGWL3OD7DgbJQ=s0-d)
Congratulations, you have exploited a PC Just with a IP address! :)
I will be creating Part 2 of this tutorial which will be Using the Meterpreter!
This tutorial was created by TechLab AKA Inventor!
This Does NOT show how to install armitage, go to http://fastandeasyhacking.com to learn how to install.
Prerequisites:
Armitage and Metasploit installed.
A MySql user, database, and password.
Armitage allready set up.
Begin!
First you will need to start Armitage.
In the terminal type:
>>>sudo armitage
Now, a login box will appear.
Put your mysql information in it:
host: 127.0.0.1 (your localhost)
Port: 55553 (metasploit's default port)
User: your mysql username for the database you will use for armitage
Pass: the password for the mysql user
Hit connect
A new box will pop up saying something such as:
"A metasploit RPC server is not running"
Click on Yes.
A loading box will appear which says "Java Connection refused"
That is normal, armitage is gathering all the ruby plugins into armitage's GUI.
Armitage will look somewhat like this:
Image has been scaled down 37% (870x453). Click this bar to view original image (1365x710). Click image to open in new window.
Now, I have a windows XP SP2 running on a Virtual Machine with the ip of 192.168.0.14
To scan your network for vulnerable hosts, do this:
On the tool bar> Hosts>Nmap Scan> Quick OS Detect (in this case you don't need to do any long scans as we will be targetting a Win XP)
now type the ROUTER'S IP and the whole network such as: 192.168.1.1/24 ( /24 is the ip range on the network)
After finding all the PC's on the network, you should see one appear that you like
Now, click on that target, and select Toolbar> Attacks> Find attacks.
It will look for all attacks for that OS.
Exploit time!
Right click on the target. A new menu will appear called: Attack.
You can try any of those attacks, or use the SMB attack as we will.
Click on Attack>SMB>ms08_067_netapi
This will appear:
Check the Reverse Connection, and unless you know what you are doing, you don't need to change any other items.
Click Launch.
Your Console will run until it shows this:
Image has been scaled down 37% (870x450). Click this bar to view original image (1365x705). Click image to open in new window.
Congratulations, you have exploited a PC Just with a IP address! :)
I will be creating Part 2 of this tutorial which will be Using the Meterpreter!
This tutorial was created by TechLab AKA Inventor!
0 Comments:
Post a Comment