Exploitation windows in virtualbox

This time I will discuss how to exploit a system in virtualbox. first of all do information gathering, here I use nmap,
  


after completion.
the result will be we match with the results from nessus.

 

click on the search target ip port that has a high level of risk.


  

after we match, immediately look for open ports and has a high severity, and we are looking for and execution exploits to metasploit console,
search do exploit with parameters
search [name of the exploit]


then use these exploits with the command
use [exploit]
RHOST set as the target computer and LHOST as an attacker or our IP 

payloads also sets the method used, here I use the adduser

 
and last is the execution
type the command exploit

  
The following results

  

Comments

Post a Comment

Popular posts from this blog

Introduction Maltego

Image
What is maltego ? Maltego are tools for OSINT (Open Source Intelligence Gathering ) , so OSINT is a method of searching the information available to the public and then analyzed and used for certain purposes maltego also an open- source intelligence and forensics application . This allows for the mining and gathering information and presenting this information in a meaningful way .
Read more

EXE file structure

Image
I 'll try to explain how a structure file extension .EXE. EXE is a common file extension indicates an executable file ( program) in the DOS , OpenVMS , Microsoft Windows , Symbian , and others. In addition to the executable program , many EXE files contain other components called resources, such as bitmaps and icons which the executable program to be able
Read more