-
May 25th, 2010, 06:58 PM
#15
Originally Posted by dinowuff
You should be able to use a reverse payload, set LHOST to the IP of your router (external) and forward LPORT to your host. Or just use a bind payload if the target is not firewalled.
I think...
You could always use Meterpreter for key logging purposes; however, I don't think that is what you are looking for.
This is exactly right. Although, if your target has a firewall/router, it will limit the exploits you can use for your attack. There would have to be port forwarding set up to allow you to attack specific vulnerabilities. You would most likely have to involve user-interaction. [opening an attachment, plugging in a USB key, visiting a malicious site, etc.]
One other suggestion, is to make use of port 80. Most firewalls don't block outbound port 80, so it will just blend in with other web traffic. If the sysadmin sees port 4444 in the logs, it would probably throw up a red flag.
\"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"
-HST
Similar Threads
-
By HTRegz in forum Network Security Discussions
Replies: 8
Last Post: May 26th, 2006, 03:03 PM
-
By LudakoT in forum IDS & Scanner Discussions
Replies: 4
Last Post: March 23rd, 2006, 04:43 AM
-
By Irongeek in forum The Security Tutorials Forum
Replies: 18
Last Post: November 20th, 2005, 10:31 PM
-
By KuiXing-2005 in forum IDS & Scanner Discussions
Replies: 2
Last Post: February 22nd, 2005, 12:51 AM
-
By MAD_M@T in forum Newbie Security Questions
Replies: 14
Last Post: April 24th, 2003, 06:06 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|