During this class… we did not really go into any power point presentations, we talked about a program call NIPRINT, which had an open port that we used to be able to connect to our victim OS, I mean we talked about vulneratbilities and being able to use a program that had an open port that an attacker could gain access with it on our last class but we didn’t really do any examples and in this class that is what we did which I found extremely cool!. I mean we could run that program NIPRINT on the victim pc, and using another machine we used a program called nepenthes than what we did was the following:
Downloaded NIprint and installed on the victim OS then we ran the program, with my Ubuntu machine I opened a command prompt and wrote down the following commands:
Access the where the metasploit software was installed
Type = Cd /desktop/msf3/tools (this is where the tools for metasploit I will be using
Type = ruby pattern_create.rb
Then a bunch of letters are displayed on the screen of the Command prompt
Type: netcat “ip address of the victim” 515 “which is the port number you will get in” then hit enter
On the next part you will type a bunch of keys and fill it up as much as possible.
After all of this has been done if you check the victims pc the program niprint should have crashed!!
You have basically infiltrated into the victim pc, you have used metasploit to enter with an open protocol that this program had open which was port 515
This is now when the hacker will have access to the machine, by writing a script and running it while niprint has crashed and if you have a good script writte by yourself to open a command prompt then now you will have all power through this machine!!!!
This was a very interesting topic!!! I would like to go over this again but with more details and running different things to learn how exactly this is working
No comments:
Post a Comment