Spying on your victim with Screenspy of Metasploit in Ubuntu!


Screenspy is a feature in Meterpreter which allows you to view what your targeted host is doing on his workstation.  It captures the images on your targeted host, sends it back to you on a set interval (in seconds) and you will look at it as if its live on your local machine.

Source: http://eromang.zataz.com/2011/02/08/metasploit-meterpreter-screenshot-and-screenspy-stdapi/

Cracking SMBNT with Medusa


As I am learning more about the SMB protocol for Windows, I came across Medusa.  So first thing I did was try and hook it up with a dictionary and attack my Windows OS which is on Windows 7.  After installing it, (see here to know how), I looked at the arguments and start cracking!  I tried cracking using THC-HYDRA but I had some difficulties at first.  The commands are pretty much the same if you look at it. Read the rest of this entry »

Medusa Parallel Network Login Auditor by Foofus


Something similar to THC-HYDRA, Medusa was written by JoMo-Kun from Foofus.

Medusa is intended to be a speedy, massively parallel, modular, login brute-forcer. The goal is to support as many services which allow remote authentication as possible. The author considers following items as some of the key features of this application:

  • Thread-based parallel testing. Brute-force testing can be performed against multiple hosts, users or passwords concurrently.
  • Flexible user input. Target information (host/user/password) can be specified in a variety of ways. For example, each item can be either a single entry or a file containing multiple entries. Additionally, a combination file format allows the user to refine their target listing.
  • Modular design. Each service module exists as an independent .mod file. This means that no modifications are necessary to the core application in order to extend the supported list of services for brute-forcing. Read the rest of this entry »

Armitage | Beyond Metasploit


You might want to consider using Armitage as your primary arsenal apart from using Metasploit’s msfconsole or msfgui.

What Is Armitage

Armitage is a graphical cyber attack management tool for Metasploit that visualizes your targets, recommends exploits, and exposes the advanced capabilities of the framework. Read the rest of this entry »

Setting up Karmetasploit in Ubuntu 10.10


This is one old post that I have never written on after saving the draf on the link that teaches how to run Karmetasploit.  Basically, what we will be doing in this post is to run the Karmetasploit module and start sniffing cookies into our database.  In this post, we will look into the commands we type until we are able to sniff cookies using Karmetasploit. Read the rest of this entry »

Missing nm-applet in Ubuntu Maverick


Alright, cause I had my nm-applet missing for some forgotten reason, I had to switch to Wicd; an alternative for managing wireless networks.  If you came here for Wicd, you can always type

sudo apt-get install wicd

After accidentally removed nm-applet from my top panel, I had to do some googling and I actually suffered not having it for few days!  Running nm-applet on terminal shows the message “nm notification something … removed … notification area”.  Google told me it might have to do with icon packages which wasn’t the case.  After days of using Wicd, I am now officially removing it thanks to the solution I found and tried.

It was a simple, Right Click Panel > Add To Panel > Notification Area.

Upgrading from Firefox 3.6.10 to Firefox 4.0.1 in Ubuntu Maverick


Alright, getting a little bit cooked up from trying to install cookie managers in Firefox 3.6.10 has now gotten me into really bad shape.  I couldn’t possibly imagine the number of possibilities Karmetasploit could do and I must get it working!  Since the cookie managers in Firefox extension kept reporting messages like “you can’t install this extension on your version” and also “we have trouble downloading from the server”, my only option was either (1.) to run a VirtualBox executing Windows Firefox since the configuration was easier or (2.) install the latest Firefox!  Let us jump straight to the point!

Read the rest of this entry »

Upgrading Ubuntu 10.10 Kernel to 2.6.37.6


I was trying to run airbase-ng on my laptop’s Ubuntu 10.10 but I realize that it have problems.  (1.) The created Access Point could not be accessed and (2.) the channel that the Access Point is created runs on channel 255 which is out of range.  I had to start searching for a solution.  My early findings told me that it had something to do with the network driver.  My laptop runs on bcm4311 and I found out that it may have something to do with MadWifi so I thought I need an Atheros.  This morning I had tried firing up my laptop in BackTrack 4 and ran airbase-ng.  My iPod caught the Access Point immediately.  At this point, I knew that it must be something wrong with Ubuntu so I continued searching.

I had then found out from the internet that it could be my kernel version that is causing the problem and here I am, updating my Ubuntu from the default kernel 2.6.35-22-generic to 2.6.37.6Whether or not airbase-ng is going to work now I am still not sure, will be updating this.  It works.

Read the rest of this entry »

KARMA + Metasploit Framework 3 == Karmetasploit


Background

In 2004 Dino Dai Zovi and Shane Macaulay presented All Your Layer Are Belong To Us at Pacsec in Tokyo. This presentation focused on the insecure behavior of wireless clients. Accompanying the presentation was a tool called KARMA (KARMA Attacks Radioed Machines Automatically). This tool acts as wireless access point and responds to all probe requests from wireless clients. Once a client has associated with the KARMA access point, every service they try to access leads to a malicious application. The services side of KARMA was written in Ruby, making it a perfect match for integration with version 3 of the Metasploit Framework.

Read the rest of this entry »

Installing VMWare Player on Ubuntu 10.10


Thanks to my friend I’m now able to run a VMWare on my laptop with the link provided below. Below are the commands you have to type in terminal. Change wget‘s parameter to the latest version with bundle extension here.

sudo apt-get install build-essential linux-headers-$(uname -r)
wget http://dlm3.vmware.com/software/vmplayer/VMware-Player-2.5.5-328052.i386.bundle
chmod +x VMware-Player*.bundle
gksudo bash ./VMware-Player*.bundle

// Now follow the GUI
// For more information see link below.

Source: http://ubuntuguide.net/how-to-install-vmware-player-in-ubuntu-9-10