Setting up Karmetasploit in Ubuntu 10.10

This is one old post that I have never written on after saving the draf on the link that teaches how to run Karmetasploit.  Basically, what we will be doing in this post is to run the Karmetasploit module and start sniffing cookies into our database.  In this post, we will look into the commands we type until we are able to sniff cookies using Karmetasploit. Read the rest of this entry »

Missing nm-applet in Ubuntu Maverick

Alright, cause I had my nm-applet missing for some forgotten reason, I had to switch to Wicd; an alternative for managing wireless networks.  If you came here for Wicd, you can always type

sudo apt-get install wicd

After accidentally removed nm-applet from my top panel, I had to do some googling and I actually suffered not having it for few days!  Running nm-applet on terminal shows the message “nm notification something … removed … notification area”.  Google told me it might have to do with icon packages which wasn’t the case.  After days of using Wicd, I am now officially removing it thanks to the solution I found and tried.

It was a simple, Right Click Panel > Add To Panel > Notification Area.

Upgrading from Firefox 3.6.10 to Firefox 4.0.1 in Ubuntu Maverick

Alright, getting a little bit cooked up from trying to install cookie managers in Firefox 3.6.10 has now gotten me into really bad shape.  I couldn’t possibly imagine the number of possibilities Karmetasploit could do and I must get it working!  Since the cookie managers in Firefox extension kept reporting messages like “you can’t install this extension on your version” and also “we have trouble downloading from the server”, my only option was either (1.) to run a VirtualBox executing Windows Firefox since the configuration was easier or (2.) install the latest Firefox!  Let us jump straight to the point!

Read the rest of this entry »

Upgrading Ubuntu 10.10 Kernel to

I was trying to run airbase-ng on my laptop’s Ubuntu 10.10 but I realize that it have problems.  (1.) The created Access Point could not be accessed and (2.) the channel that the Access Point is created runs on channel 255 which is out of range.  I had to start searching for a solution.  My early findings told me that it had something to do with the network driver.  My laptop runs on bcm4311 and I found out that it may have something to do with MadWifi so I thought I need an Atheros.  This morning I had tried firing up my laptop in BackTrack 4 and ran airbase-ng.  My iPod caught the Access Point immediately.  At this point, I knew that it must be something wrong with Ubuntu so I continued searching.

I had then found out from the internet that it could be my kernel version that is causing the problem and here I am, updating my Ubuntu from the default kernel 2.6.35-22-generic to or not airbase-ng is going to work now I am still not sure, will be updating this.  It works.

Read the rest of this entry »

Installing VMWare Player on Ubuntu 10.10

Thanks to my friend I’m now able to run a VMWare on my laptop with the link provided below. Below are the commands you have to type in terminal. Change wget‘s parameter to the latest version with bundle extension here.

sudo apt-get install build-essential linux-headers-$(uname -r)
chmod +x VMware-Player*.bundle
gksudo bash ./VMware-Player*.bundle

// Now follow the GUI
// For more information see link below.


Finding the right vulnerability and exploit from Nessus report in Metasploit

If you have trouble setting up a database in Metasploit, see here.

Once you have already scanned your target using Nessus, download the report as .nessus file.  Run Metasploit and select the .nessus file with db_import /path/to/nessus/file.nessus.  I am running on Metasploit framework-3.6.0 while my Nessus is on 4.4.1Ubuntu 8.04 32bit.  Basically I got this file from either my friend or professor so I did not realize that it was actually Ubuntu 8.04.  It worked so I’m going to stick with it till the end of the month.  To get the latest version of Nessus, click here.  Agree to the license agreement before proceeding.

Next, type db_autopwn -x -t to see the available exploits from the reference that we have added earlier (the .nessus file).   You will see something similar to off below when you have gotten the result.  Please be reminded that I am using Ubuntu 10.10.

With the given result above, you can now use the available vulnerabilities listed.  This way it is much simpler than analyzing the Nessus report.  Metasploit automatically checks whether it have the vulnerability and those that matches with it from the report.  You don’t have to consume time finding the right exploit name or ID for it this way.  Always test with the given permission, never test this on another computer without the authority to do it, especially when you are in an organization.  You never know what kind of trouble you get into.

Not familiar with Nessus itself?  See here!

If you are not familiar with Nessus, you can execute it right from Msfconsole! explains more here.

And few related links that are pretty useful
1.) Metasploit Unleashed
2.) Nessus via Msfconsole
3.) SMB Login Check
4.) Vulnerability Scanning
5.) Working with Nessus

Other available resources

1.) Owning with Nessus and Metasploit
2.) Tenable Nessus
3.) Installing the Metasploit Project
4.) Everything Nessus
5.) Everything Metasploit

Creating database user for postgresql in Metasploit

I’m sure many of you would have trouble going through this stage if you are trying to setup the database within Metasploit.  I’m definitely one of them and I had trouble with it all the while until today, I’m not entirely sure whether the solution I’m giving is correct but I believe it should so I’m writing this quickly and will alter it when I’m done!

Please be reminded that I am doing this on an Ubuntu machine.
Please check the source link for now.