NoBoDyDD
asked on
metasploit after exploiting
hello
i used java exploit as an example, then i exploited it got as:
[*] Exploit running as background job.
[*] Started reverse handler on 192.168.1.11:4444[*] Using URL: http://192.168.1.11:8080/mLnhfDGempU
[*] Server started.
here's my question how do i reach files in mLnhfDGempU ? to edit and many things, i tried to search but no lack
thank you
i used java exploit as an example, then i exploited it got as:
[*] Exploit running as background job.
[*] Started reverse handler on 192.168.1.11:4444[*] Using URL: http://192.168.1.11:8080/mLnhfDGempU
[*] Server started.
here's my question how do i reach files in mLnhfDGempU ? to edit and many things, i tried to search but no lack
thank you
it looks like the exploit you used depends on the user of the vulnerable machine to click on a link. So this java exploit you are using is sort of a social engineering attack.
what you have to do is emulate the user - go to the vulnerable machine and click on or open that link. That will launch a java applet that runs the exploit code, which if successful, will reach back to your listener at 192.168.1.11:4444 and you will have your shell.
This is a client side exploit. most, if not all of the java exploits in metasploit will work this way.
what you have to do is emulate the user - go to the vulnerable machine and click on or open that link. That will launch a java applet that runs the exploit code, which if successful, will reach back to your listener at 192.168.1.11:4444 and you will have your shell.
This is a client side exploit. most, if not all of the java exploits in metasploit will work this way.
ASKER
yeah i know all that guys by the way all authorized this isn't for illegal stuff .
let me try to explain what i want, i used java exploit as enxample:
the url now is http://192.168.1.11:8080/mLnhfDGempU
the jar file is: http://192.168.1.11:8080/mLnhfDGempU/exploit.jar
my question is how do i edit that exploit.jar file and edit html page in http://192.168.1.11:8080/mLnhfDGempU/
i hope i explained it right
thank u
let me try to explain what i want, i used java exploit as enxample:
the url now is http://192.168.1.11:8080/mLnhfDGempU
the jar file is: http://192.168.1.11:8080/mLnhfDGempU/exploit.jar
my question is how do i edit that exploit.jar file and edit html page in http://192.168.1.11:8080/mLnhfDGempU/
i hope i explained it right
thank u
Decompile the jar with any decompile program, just Google for one.
Then use an IDE or even notepad++ to edit.
Why do you need to edit it?
Then use an IDE or even notepad++ to edit.
Why do you need to edit it?
ASKER
i already did all the work just need to know where to upload it after i edited it
I still dont understand....do you not know where to find the file on your metasploit server?
Do this from the root of your file system:
Grep -i exploit.jar
Do this from the root of your file system:
Grep -i exploit.jar
Then upload the edited file to whereever it was.
If you created a custom java exploit...the you should look into custom metasploit packages instead of doing one of the buolt ins
If you created a custom java exploit...the you should look into custom metasploit packages instead of doing one of the buolt ins
ASKER
i downloaded it via browser that's why i don't know where it is.
like this:
http://192.168.1.11:8080/mLnhfDGempU/exploit.jar
i edited it then i just want to upload i just couldn't find it on the system
grep is still running tho
like this:
http://192.168.1.11:8080/mLnhfDGempU/exploit.jar
i edited it then i just want to upload i just couldn't find it on the system
grep is still running tho
Yea from root it will take a while...but that will find it
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
usually there is a shell as a default payload. what 'sploit did you use, and which payload was selected if any?