Monday, June 6, 2011

Metasploit, stealing data, get saved password and sniffing password

My friend asked me: what will you do after exploit. So i answered: privilege escalation, or stealing data. I have some advices for : Phases of Post-exploitation
1. Understanding the Victim better
2. Privilege Escalation
3. Deleting Log and Kill Monitoring software
4. Collecting Data, excuting Programs
    Search for a file
    Download files
    Download resgistry
    Download application data
        Outlook
        Browser password/sessions
        ...etc
5. Backdoors and Rootkits
6. Using victim as Pirvot to hack deeper into the network 

I maded one video demo it: Using metasploit to stealing data and get firefox saved password:





Next, in windows XP ( not vista). Service and first user in windows station WinSta0 session 0 . And second user is session 1
1 session, includes WinSta0, of course, and every WinSta0 includes 4 desktops:
    Default
    Disconnect
    Winlogon
    SAdesktop
Each desktop has it own keyboard buffer, so we can sniffing logon password. So i maded one video: Using Metasploit sniff password, includes keyloger and logon password




HD quality :)).
Exe file:
Sniff password and keylogger: http://www.mediafire.com/?okbyu3pb1t0q4mt
Steal data and get saved password: http://www.mediafire.com/?qt4btdq2qd6czuw
------------------------------------------------------------
Thanks for reading
--------------------------------------------------------------------------
All my Lab:
Linux Lab -- window and Cisco Lab
to be continued - I will update more.

No comments:

Install Xposed Inspector and Frida on Genymotion

Today i had some work with android. So i need trace application. I found 2 nice tool can help me: Xposed Inspector and Frida. To setup ther...