Scribd Logo
Upload

Welcome to Scribd!

  • I200604 Muhammad Huzaifa Lab 06

    Uploaded by

    huzzaifaasim
    8 views7 pages
    This document summarizes a lab focusing on using the MS08 vulnerability to exploit a Windows XP virtual machine. The key steps are: 1. Identifying the IP addresses of the Kali Linux and Windows XP VMs. 2. Using Metasploit on Kali Linux to run the MS08 exploit against the Windows XP VM using its IP address. 3. Gaining a shell on the Windows XP VM and using commands like "getsystem" and "shell" to get system information and a raw shell on the target.

    Original Description:

    This lab focuses on using netapi vulnerability to exploit windows XP

    Original Title

    i200604_Muhammad_Huzaifa_Lab_06

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document summarizes a lab focusing on using the MS08 vulnerability to exploit a Windows XP virtual machine. The key steps are: 1. Identifying the IP addresses of the Kali Linux and Windows XP VMs. 2. Using Metasploit on Kali Linux to run the MS08 exploit against the Windows XP VM using its IP address. 3. Gaining a shell on the Windows XP VM and using commands like "getsystem" and "shell" to get system information and a raw shell on the target.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    8 views7 pages

    I200604 Muhammad Huzaifa Lab 06

    Uploaded by

    huzzaifaasim
    This document summarizes a lab focusing on using the MS08 vulnerability to exploit a Windows XP virtual machine. The key steps are: 1. Identifying the IP addresses of the Kali Linux and Windows XP VMs. 2. Using Metasploit on Kali Linux to run the MS08 exploit against the Windows XP VM using its IP address. 3. Gaining a shell on the Windows XP VM and using commands like "getsystem" and "shell" to get system information and a raw shell on the target.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 7

    ABSTRACT

    This lab focuses on using netapi vulnerability to


    exploit windows XP.

    Muhammad Huzaifa
    20I-0604

    VULNERABILTY ASSESSMENT
    & REVERSE ENGINEERING
    Lab 06
    Starting with checking the IP addresses of both VMs. Below is the Ip for windows XP in host only mode.

    Similarly check the IP address for kali Linux using “ifconfig”.

    The very 1st step is to check the MS08 exploit in msfconsole as shown below:

    We are going to use the very 1st exploit we saw after running this command.
    Now set the relevant fields for exploit to run. Use the following steps:

     Set RHOSTS <Targets IP Address>


     Set LHOST <Kalis IP Address>
     Set target 0.

    Use run or exploit to start exploiting target.

    Now you can see in the screenshot above that our kali’s Metasploit has been connected to the target’s
    machine. Now you just need to use the following commands to get system information.

     Use getsystem to get system information

    Shell commands get the raw shell of the target machine and we can run the commands that can run on
    target machine itself.

    Use shell command to get raw shell as shown in screenshot below:

    Another famous command is the use of screenshare to see what is happening on victim’s machine. To
    get a view of target device use “screenshare” command as shown below:
    The result of the following command will be something like this:

    Persistence

    You might also like