Home

meterpreter

Automatic credential collection and storage with CredCollect

Thu, 04/02/2009 - 01:39 by tebo   Tags:
In previous posts here at Carnal0wnage, CG has diligently covered using MSF and meterpreter to do all kinds of stuff, including grabbing hashes with the Priv extension (Vinnie Liu) and tokens with the Incognito extension (Luke Jennings). These are powerful post-exploitation features that yield invaluable information to the engaging team, therefore the presentation and accessibility of this data becomes an important factor as the scale of the engagement and number of targets grows.
»

Token Passing with Incognito Part 2

Tue, 05/06/2008 - 22:32 by cg   Tags:
Alright, i love this tool and its been officially merged into the msf trunk which is just super.
»

Using Metasploit to pivot through a exploited host part 2

Fri, 09/07/2007 - 00:17 by cg   Tags:
ok, got it figured out (yes Dean told me to change the port yesterday). if you were following along and just want the quick answer, its that you have to change the default port number (which is 4444) to something else for that 2nd shell. 4444 is tied up on your pivot host with your meterpreter session, so that makes sense....

let see it:
»

Using Metasploit to pivot through a exploited host

Thu, 09/06/2007 - 01:17 by cg   Tags:
so I'm working on chicagon slides and looking for a fun demo, Dean and I were talking about being able to pivot or relay through the victim into the internal network. i said i didnt think you could do it (he said you can)...the answer... you can. yeah i lost the bet :-)

http://www.metasploit.com/archive/framework/msg02580.html

so lets see it...

bust your shell and get your meterpreter session:
»