ali_ali

How to Use Xploits

26 posts in this topic

I need Help in Compiling Exploits and using Them.I am using Windows Xp

Share this post


Link to post
Share on other sites
Well, an exploit is code written inorder to penetrate certain hardware/software vulnerabilities. Now, considering the fact that you "probably" acquire no programming networking skills, you evidently hope to acquire skiddie status. For you to achieve this, you must have some sort of compiler, interpreter for the exploit, depending on what it is coded in. Preferrabily you would require some sort of UNIX box, as most exploits are coded without Win32 API's. There is a multitude of exploits on the net, just search google. :), inorder to use an exploit, you have to find a vulnerability. Find that, then find an exploit, if you can't find an exploit, then learn how to code and make one for a certain vuln. :)

Share this post


Link to post
Share on other sites
Ok Buddy...........
I have found some C Exploits and I have two Pc c connected by LAN.Now Tell me How to FInd Vulnerbilities and Expoit the other Pc

Note that Both Pcs are using Windows XP

Share this post


Link to post
Share on other sites
First, do you have PERMISSION to exploit these computers? (i.e. if they are [i]yours[/i] and are connected to [i]your[/i] network) If so, then the first thing to do would be to use a port scanner that scans for services running on the target machine. [url="http://www.insecure.org/nmap/"]Nmap[/url] is a good choice. Now that you know what services are running, and hopefully you have some idea of their version numbers, search for vulnerabilities at [url="http://www.securityfocus.com/vulnerabilities"]Security Focus[/url] (or some other vulnerability site). If you do not find any exploits at Security Focus, then try to find some with a search engine. For example, if I wanted to find a buffer overflow exploit for IIS 5.0, then I would type into Google:

[code] "buffer overflow exploit" "IIS 5.0"[/code]

Then you will need a compiler for the language in which the exploit was written (probably C). Browse the source code to see how to use the program, then compile it and run it.

You could also use a vulnerability scanner, such as [url="http://www.nessus.org"]Nessus[/url], to scan for vulnerabilities, but vulnerability sites are more up to date. You could also search for code at sites like [url="http://www.milw0rm.com"]www.milw0rm.com[/url].

To run the exploit, you need to read the code to understand what it does. Edited by Elzair

Share this post


Link to post
Share on other sites
Yeah!!
ofcourse it is my own computer.I do not need to use Namp coz i have Physical acccess
but if u say i scaned it.I found port 80,21,139 and Many Other open.


But i still do not know howfind vulnerbility
I visit securityfocus.What the Hell is Security Focus

Share this post


Link to post
Share on other sites
Ok...................

I visit the site milw0rm.com.I click on WMF vulnerbility Nothing Happen a Page was loaded with some text what should i do next

Share this post


Link to post
Share on other sites
Your kind of missing the General Idea. "Exploits" are code that undermine a service running on the computer. A web server with port 80 exposed would be running Apache, IIS, etc. Port 21 is FTP. Find what ports handle what usually, and what service is running on them. Look to Security Focus, etc for an exploit specific to that service.

Like Elzair said you will need to learn C to understand the most common way of exploiting a service on a machine. The most common for a long time is the way C automates the verification of array indices. If you want the shortest "easy" way, what comes to mind is a live distro like auditor or nubuntu and the Metasploit Framework. You'll likely learn something about Linux along the way which is a good thing. Irongeek has a Hacking Illustrated on his site I believe on exactly that.

Now be sure to read all the docs for whatever you are using, and I do mean *all*. Read the How To Ask A Question FAQ on why that is important. [url="http://www.catb.org/~esr/faqs/smart-questions.html"]http://www.catb.org/~esr/faqs/smart-questions.html[/url]

Be prepared to spend at least 40 hours reading before beginning to grasp this. hundreds of hours reading before you are good at it. That is just the honest truth. Also learn how to use Google in an efficient manner, it is invaluable. Edited by RightCoast

Share this post


Link to post
Share on other sites
Ok.
Thanx for telling me.I have donloaded and watched all the Movies available at irongeek.com

I like the Meta Sploit movie(flash) coz it is Goood
So u mean I should Install LinuX.

I have a Free Shell acount and Meta Spoilt is only avialabe for Linux.How i can install meta Spoilt on Windows XP


Can be Linux Red Hat is Good For Hacking i have install it on my computer but i can not access resource coz other pc is on window so i delete Red Hat and Install Slackware

Share this post


Link to post
Share on other sites
Use a security/attacking/pentesting Linux live CD like auditor or nubuntu or whatever you choose too. You can install Metasploit on XP. I haven't but the website has instrutions on how to do it in the docs. Having a HDD linux install is fine too, whatever you prefer.

Share this post


Link to post
Share on other sites
Thank u sir!!!!!!!!
I downloaded Linux Slackware in Zip Format it size is 37 mb........


Now i am very impressed by You That We install Metaspolit on XP plz send me Xp url Hurry i am excited and waiting for Sir

Share this post


Link to post
Share on other sites
<--edit by droops-->

look, exvitel, we dont treat people like that here. if you want to be a bastard to someone asking a question, then you need to find a new forum to do that at.

Share this post


Link to post
Share on other sites
Um... Am I the only one that thinks that this is a joke?

Share this post


Link to post
Share on other sites
Perhaps the poster is from Asia or Eastern Europe. Who knows, I am sure he is trying to write his best. So for he hasn't really broken any rules (read them ali ali, so you know what they are). He is certainly being friendly, what with the "sirs" and all. As for URL's Ali....I have to insist you read the question FAQ I linked to, and begin to use Google or Yahoo or whatever search engine you want. put metasploit into it and begin reading. That is all the advice you will ever get from me unless you have a specific question. Documentation for programs is there for a reason. Good Luck!

Share this post


Link to post
Share on other sites
The text that you saw on Milw0rm was the 'source code' for the exploit. You can learn more about 'source code' at [url="http://url=http://en.wikipedia.org/wiki/Source_code"]http://en.wikipedia.org/wiki/Source_code[/url]]http://en.wikipedia.org/wiki/Source_code[/url]. Save the source code to disk and compile it with a C compiler, which will produce an executable program.

SecurityFocus is a website that deals with Computer Security and features an extensive vulnerability database.

Yeah, I have heard the Metasploit Framework is a good way to learn about and test exploits, although I have not played with it much. Edited by Elzair

Share this post


Link to post
Share on other sites
[quote name='ali_ali' date='Jan 28 2006, 11:50 AM']Ok.
Thanx for telling me.I have donloaded and watched all the Movies available at irongeek.com

I like the Meta Sploit movie(flash) coz it is Goood
So u mean I should Install LinuX.

I have a Free Shell acount and Meta Spoilt is only avialabe for Linux.How i can install meta Spoilt on Windows XP


Can be Linux Red Hat is Good For Hacking i have install it on my computer but i can not access resource coz other pc is on window so i delete Red Hat and Install Slackware
[right][snapback]167889[/snapback][/right]
[/quote]

Inorder to install the metasploit framework on windows, you must have Cygwin, which is a Linux-like environment for Windows. (www.cygwin.com) Then, you may go to www.metasploit.com and acquire your skiddie status.
Also, kindly learn functional english, as not too many people would take you seriously if you don't read over what you type.
Try learning C or Perl as most known exploits are coded in either one of them.

Share this post


Link to post
Share on other sites
[quote name='oddflux' date='Jan 30 2006, 07:09 AM'][quote name='ali_ali' date='Jan 28 2006, 11:50 AM']Ok.
Thanx for telling me.I have donloaded and watched all the Movies available at irongeek.com

I like the Meta Sploit movie(flash) coz it is Goood
So u mean I should Install LinuX.

I have a Free Shell acount and Meta Spoilt is only avialabe for Linux.How i can install meta Spoilt on Windows XP


Can be Linux Red Hat is Good For Hacking i have install it on my computer but i can not access resource coz other pc is on window so i delete Red Hat and Install Slackware
[right][snapback]167889[/snapback][/right]
[/quote]

Inorder to install the metasploit framework on windows, you must have Cygwin, which is a Linux-like environment for Windows. (www.cygwin.com) Then, you may go to www.metasploit.com and acquire your skiddie status.
Also, kindly learn functional english, as not too many people would take you seriously if you don't read over what you type.
Try learning C or Perl as most known exploits are coded in either one of them.
[right][snapback]168302[/snapback][/right]
[/quote]


Ok Buddy!! B)
I have install metasploit on My windows :ninja: and I know How To use it With Web interface :ranaway:

But There is little Problem.When i Exploit some other PC on My LAN.Web interface says Page can not be Displayed. :skull:

Share this post


Link to post
Share on other sites
Have your [i]thoroughly[/i] read the [url="http://metasploit.com/projects/Framework/docs/userguide/index.html"]MetaSploit Users Guide[/url]? Edited by Elzair

Share this post


Link to post
Share on other sites
WHY NMAP dosnt work to me?? i instal WinPac and everithyng and i run Nmap and nothing appears??!!

This shows for a sec. [url="http://img451.imageshack.us/img451/418/untitled8cq.png"]Pic[/url] Edited by MetalguyX

Share this post


Link to post
Share on other sites
[quote name='MetalguyX' date='Feb 1 2006, 10:21 PM']WHY NMAP dosnt work to me?? i instal WinPac and everithyng and i run Nmap and nothing appears??!!

This shows for a sec. [url="http://img451.imageshack.us/img451/418/untitled8cq.png"]Pic[/url]
[right][snapback]168714[/snapback][/right]
[/quote]

That is part of the standard help text you get when you mistype the commands.

How are you starting nmap? Are you using any of the switches or just runnig nmap?

Try this:
[code]
nmap -vv -O -P0 127.46.23.151
[/code]
and replace the IP with the one from the PC you are scanning.

Share this post


Link to post
Share on other sites
[quote name='MetalguyX' date='Feb 1 2006, 03:21 PM']WHY NMAP dosnt work to me?? i instal WinPac and everithyng and i run Nmap and nothing appears??!!

This shows for a sec. [url="http://img451.imageshack.us/img451/418/untitled8cq.png"]Pic[/url]
[right][snapback]168714[/snapback][/right]
[/quote]

Are you starting a Command Prompt first? The standard Nmap program is command-line based and requires additional options to run, such as the hostname/IP to be scanned. If you are just clicking on the nmap.exe, then it is running without any options, and so it finds no host to scan, prints out usage information, and then exits, which causes Windows to terminate the prompt. Go to Start->Program->Accessories->Command Prompt then cd to Nmap's directory and run what Hiryu posted above.

Share this post


Link to post
Share on other sites
is there a simplistic way of taking the C code from securityfocus for example, maybe even frsirt, and converting it to work on metasploit? Edited by starcrafter2k

Share this post


Link to post
Share on other sites
[quote name='starcrafter2k' date='Feb 1 2006, 06:43 PM']is there a simplistic way of taking the C code from securityfocus for example, maybe even frsirt, and converting it to work on metasploit?
[right][snapback]168741[/snapback][/right]
[/quote]


I think There is No Painless :blowfuse: Way to Do That :nono:
:borg:

Share this post


Link to post
Share on other sites
[color=red]Is there any other software which can be use for exploiting like metaSploit Frame Work [/color] Edited by ali_ali

Share this post


Link to post
Share on other sites
binrev forums are going down. This whole topic could be closed by only one post "STFU & G00GLE".

Share this post


Link to post
Share on other sites
[quote name='psyke' date='Feb 4 2006, 04:25 PM']This whole topic could be closed by only one post "STFU & G00GLE".
[right][snapback]169305[/snapback][/right]
[/quote]
finally somebody said it ;)
:D Edited by jabzor

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.