Electronic Books

List the available payloads by typing show
payloads and pressing Enter.
The payloads included with Metasploit are now displayed on the screen.
In this lab we want to receive a C: prompt from the target machine so we
need to select the win32_reverse payload. This is done by typing:
set PAYLOAD win32_reverse
Vulnerability Scanning
435
Once the exploit and payload have been selected, the target must be chosen.
Metasploit will identify which targets are susceptible to the specific exploit you
are using. To view a list of targets, type show targets and press Enter.
In this example, the exploit can be used against the following:

Windows 2000 targets (Service Pack 0??“4 installed on it)

Windows 2000 targets (French language with Service Pack 4 installed)

Windows 2000 targets (Spanish language with Service Pack 4 installed)
*Note: Once again the value and importance of maintaining updates on your computers
is demonstrated. A properly patched system is much more difficult to penetrate.
436
Practical Hacking Techniques and Countermeasures
For this example, the target was set to 0 by typing set TARGET 0 and
pressing Enter.
The next step is to identify what is required and what is optional for the
exploit to run. Type in show options and press Enter.
Vulnerability Scanning
437
This exploit has two required fields that are currently blank (RHOST and LHOST).
Set the target IP address for the RHOST by typing:
set RHOST 172.


Pages:
139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163