why did you enter your public ip as lhost at one point and then when your in msfconsole set the lhost as your private ip?

kiddie script ! old ass exploit . might as well have explained how the cursed ANI exploit worked.

@basetpk Old ass exploit... I don't know many ways to attak a computer behind a NAT...

@basetpk Another thing, it's script kiddie, not kiddie script, and yes, I'm not good enough to make my own exploits yet... angry person

@basetpk hey dont get mad , i was once a kiddie script. then i learned c++ and woahh LOL props bro ! give it your best . OWS!

ohh its works, but u have to send to a victim a file... nad no 1 accepts strange exe files lol..

@Ainaras12345 Obviously you have to use some social engineering but you can also "add" that exe to an existing one, for example, you download the installer for VLC, let's imagine that it's called vlc.exe

You can add your malicious executable to vlc.exe so when the victim launches the exe, it launches vlc correctly and therefore, becomes less suspicious. There are also other ways to do that :)

But key word, social engineering :)

doeas not work.

What else can be done besides spying on them via taking a screenshot of the victim's computer?

props, very good video. the virtual world is a scary place.....

wow,super man,ill get what u did in 2 years maybe :)isnt there some program like u install it u puth the ip address and u can controll the pc or screen??

@TheArifovski What you are talking about is called "RAT", you can look up "Darkcomet". Basically, you send the .exe to your victim, they open it and then Darkcomet tells you that you have a "zombie" and with Darkcomet you can view their screen, record their keystrokes, download stuff, well, basically, a lot of things :)

@1tpe But meterpreter allows you to do stuff like this too

@TheArifovski You have a reverse shell, you can basically do everything you want

VERY nice you are great !

the writing is too small

@anandsunnoo What writing? and the video is HD720 so you can watch it fullscreen with details :)

Sorry, is it work on windows 7 ?

@SuperIT009 Sure does!

@tinyash11 thx ...

@tinyash11 oo , thx .. but the command ?? is it same with your command ? ... except starting the console ...

Do i need to have ubuntu for that? can you add me on msn znp@live.se

use ubuntu????????



@marco41686 Yes

Can the file made by the payload (I believe you called yours hello.exe) be something other than an executable file?

@Aman9146 No, it has to be an excecutable

is it possible to call the payload .jpeg instead of .exe?

@oledoledoffen12 No

Can't we trigger this exploit by hand?

nah, i installed metasploit but it always says its corrupt and it never works

@TheLukegamer the exploit? you mean its detected by the antivirus? If so, use msf-encode shikata_ga_nai, or choose a more server side payload like windows/shell_reverse_tcp that one always work for me and bypass antivirus.. (never tried in one different than avg)

ohh, ok i gess i can do it now, and plus how come my metasploit looks wayy diffrent?

@TheLukegamer I don't know what you mean by way different, maybe it's just the console or maybe you're using metasploit in your browser, dunno. ^^

what do we put for the destination?



@TheLukegamer Hi, for example : /home/toto/Desktop/Super_Softw­are.exe

That will save the code into a file called "Super_Software.exe" on toto's desktop :)

You can't hack with metasploit remotely without first having the victim install the .exe?