Alert icon
We're changing our privacy policy. This stuff matters.  Learn more  Dismiss

Run an exploit and use pivoting with Meterpreter, Metasploit and Backtrack5

Sign in or sign up now!
Alert icon
Upgrade to the latest Flash Player for improved playback performance. Upgrade now or more info.
1,266
Loading...
Alert icon
Sign in or sign up now!
Alert icon

Uploaded by on Nov 6, 2011

Use pivoting to hack clients that aren't directly accessible.

First, we exploit a publicly-visible client. Then, using pivoting, we attack a second client on the same network. Outside access to the second client is blocked by a firewall, which is why we must use pivoting to attack it.

TARGETS: Windows XP Pro service pack 2

EXPLOITS: The meterpreter payload in Metasploit

SOFTWARE: BackTrack5

KEY CONCEPT - Pivoting:

Pivoting refers to the practice of hacking a network computer or server and then using that host to attack other computer systems from within the network. By launching attacks from within the network, the attacker bypasses firewall policy and can execute attacks that would not be possible from outside the network. By using a compromised system to launch attacks from, the attacker has an improved prospect of remaining undetected and can leave less of a fingerprint.

The full notes for this tutorial are available on my website:
http://www.danscourses.com/Network-Penetration-Testing/metasploit-pivoting.html
--

MORE DAN'S COURSES

Subscribe!
http://www.youtube.com/subscription_center?add_user=danscourses

More security videos:
http://www.youtube.com/user/danscourses#grid/user/01324EDAD7DB9B40

My channel:
http://www.youtube.com/user/danscourses/

  • likes, 0 dislikes

Link to this comment:

Share to:

Uploader Comments (danscourses)

  • It keeps saying "{-} Exploit exception: No matching target" and not creating a session. I tried using other computers in my network but to no avail. I can see them on the Autoscan exploit as well as on the network itself and I followed your instructions to the letter. Any ideas??

    bladeslash321 3 months ago

  • @bladeslash321 is that before or after the pivot?

    danscourses 3 months ago

  • Good tutorial btw - It might help to quickly demonstrate how someone might view all live hosts on the internal network - maybe a simple batch script to ping a range of hosts, or a quick glance at the arp table..

    SeanOBriain 3 months ago

  • @SeanOBriain Definitely need t make a video on that, thanks for the feedback.

    danscourses 3 months ago

  • Nice tutorial, Dan. Which class is this for?

    onesaint88 3 months ago

  • @onesaint88 thanks, see network penetration testing at danscoursesdotcom... still working on it.

    danscourses 3 months ago

see all

All Comments (15)

Sign In or Sign Up now to post a comment!

  • @danscourses thanks for the video , but it didn't work for me

    Exploit exception: No matching target

    it shows me that just after setting the RHOST and tapping exploit

    any ideas plzz !!

    ambxh1 3 weeks ago

  • you can view the pid in xp tsk mgr by settings in "view"

    got2bme619 2 months ago in playlist Penetration Testing

  • thnx for the tut n what about bypass windows firewall, PIX firewall n Anti Virus solutions deployed at the remote system

    daagydd 2 months ago

  • @danscourses no probs - thanks for the videos :)

    SeanOBriain 3 months ago

Loading...

Alert icon
0 / 00Unsaved Playlist Return to active list
    1. Your queue is empty. Add videos to your queue using this button:
      or sign in to load a different list.
    Loading...Loading...Saving...
    • Clear all videos from this list
    • Learn more