Web Java Attack With SET on Backtrack V

**eMJe009** · 08-09-2012, 12:12 PM

setelah dieksekusi hasilnya malah begini om ?
nie maksudnya gimana om ?

192.168.4.50 - - [09/Aug/2012 00:10:47] "GET / HTTP/1.1" 200 -
192.168.4.50 - - [09/Aug/2012 00:10:48] code 404, message File not found
192.168.4.50 - - [09/Aug/2012 00:10:48] "GET /Java.class HTTP/1.1" 404 -

iKONspirasi · 08-10-2012, 08:04 AM

(08-09-2012, 10:13 AM)anon03 Wrote: t4 ane kyk gnie om

WARNING: Database support has been disabled

database yang dimaksd database mana y om..>???
terus aktifinnya gmn,,??

Mohon pencerahanya om.,

sepertinya database.yml nya belum disetting atau belum pernah jalanin metasploit

setting database.yml berada di /opt/folder/metasploit/database.yml
buka saja file database.yml dengan text editor, seperti dibawah ini:

Code:
root@iKONs:~/Pentest/set# cat /opt/metasploit-4.4.0/config/database.yml 

#

# These settings are for the database used by the Metasploit Framework

# unstable tree included in this installer, not the commercial editions.

#

development:

  adapter: "postgresql"

  database: "msf3dev"

  username: "msf3"

  password: "702d6a7a"

  port: 7337

  host: "localhost"

  pool: 256

  timeout: 5

production:

  adapter: "postgresql"

  database: "msf3dev"

  username: "msf3"

  password: "702d6a7a"

  port: 7337

  host: "localhost"

  pool: 256

  timeout: 5

cek apakah databasenya sudah sesuai dengan yang digunakan? postgresql atau mysql?

(08-09-2012, 12:12 PM)eMJe009 Wrote: setelah dieksekusi hasilnya malah begini om ?
nie maksudnya gimana om ?

192.168.4.50 - - [09/Aug/2012 00:10:47] "GET / HTTP/1.1" 200 -
192.168.4.50 - - [09/Aug/2012 00:10:48] code 404, message File not found
192.168.4.50 - - [09/Aug/2012 00:10:48] "GET /Java.class HTTP/1.1" 404 -

itu eksekusi yg mana? pas jalanin set atau setelah milih2 menunya?
sepertinya get http ke ip tsb dapat feedback 404 alias ga ada filenya, itu ip hostmu? apachenya jalan normal? ada yg pake port 80 ga?

**nisan** · 08-10-2012, 11:03 AM

(08-10-2012, 08:04 AM)konspirasi Wrote:
(08-09-2012, 10:13 AM)anon03 Wrote: t4 ane kyk gnie om

WARNING: Database support has been disabled

database yang dimaksd database mana y om..>???
terus aktifinnya gmn,,??

Mohon pencerahanya om.,

sepertinya database.yml nya belum disetting atau belum pernah jalanin metasploit

setting database.yml berada di /opt/folder/metasploit/database.yml
buka saja file database.yml dengan text editor, seperti dibawah ini:

Code:
root@iKONs:~/Pentest/set# cat /opt/metasploit-4.4.0/config/database.yml # # These settings are for the database used by the Metasploit Framework # unstable tree included in this installer, not the commercial editions. # development: adapter: "postgresql" database: "msf3dev" username: "msf3" password: "702d6a7a" port: 7337 host: "localhost" pool: 256 timeout: 5 production: adapter: "postgresql" database: "msf3dev" username: "msf3" password: "702d6a7a" port: 7337 host: "localhost" pool: 256 timeout: 5

cek apakah databasenya sudah sesuai dengan yang digunakan? postgresql atau mysql?

(08-09-2012, 12:12 PM)eMJe009 Wrote: setelah dieksekusi hasilnya malah begini om ?
nie maksudnya gimana om ?

192.168.4.50 - - [09/Aug/2012 00:10:47] "GET / HTTP/1.1" 200 -
192.168.4.50 - - [09/Aug/2012 00:10:48] code 404, message File not found
192.168.4.50 - - [09/Aug/2012 00:10:48] "GET /Java.class HTTP/1.1" 404 -

itu eksekusi yg mana? pas jalanin set atau setelah milih2 menunya?
sepertinya get http ke ip tsb dapat feedback 404 alias ga ada filenya, itu ip hostmu? apachenya jalan normal? ada yg pake port 80 ga?

buka databasenya gmn om .,.???
lok kyk gnie bnr gak..???
[Image: 351xsi9.png]

tpi kyk gtu y om

iKONspirasi · 08-10-2012, 04:58 PM

itu coba setelah /opt/meta(tab)/(tab) gitu

**nisan** · 08-10-2012, 10:09 PM

(08-10-2012, 04:58 PM)konspirasi Wrote: itu coba setelah /opt/meta(tab)/(tab) gitu

masih belum maksud om, maaf ya ane pemula banget,, bisa dijelasin lebih lengkap gak om.,

ane cari do google bingung keywordnya.,

maaf y sebelumnya ane lok ngerepotin om,
lok misal om ngerasa terganggu, gak usah di jawab juga gak apa2 kok om.,
Big Grin

iKONspirasi · 08-10-2012, 10:40 PM

tombol tab itu sebelah atasnya capslock

**nisan** · 08-11-2012, 12:12 AM

(08-10-2012, 10:40 PM)konspirasi Wrote: tombol tab itu sebelah atasnya capslock

udah om.,
tpi mlh keluar kyk gnie:

/opt/metasploit/config/database.yml: line 6: development:: command not found
/opt/metasploit/config/database.yml: line 7: adapter:: command not found
/opt/metasploit/config/database.yml: line 8: database:: command not found
/opt/metasploit/config/database.yml: line 9: username:: command not found
/opt/metasploit/config/database.yml: line 10: password:: command not found
/opt/metasploit/config/database.yml: line 11: port:: command not found
/opt/metasploit/config/database.yml: line 12: host:: command not found
/opt/metasploit/config/database.yml: line 13: pool:: command not found
/opt/metasploit/config/database.yml: line 14: timeout:: command not found
/opt/metasploit/config/database.yml: line 16: production:: command not found
/opt/metasploit/config/database.yml: line 17: adapter:: command not found
/opt/metasploit/config/database.yml: line 18: database:: command not found
/opt/metasploit/config/database.yml: line 19: username:: command not found
/opt/metasploit/config/database.yml: line 20: password:: command not found
/opt/metasploit/config/database.yml: line 21: port:: command not found
/opt/metasploit/config/database.yml: line 22: host:: command not found
/opt/metasploit/config/database.yml: line 23: pool:: command not found
/opt/metasploit/config/database.yml: line 24: timeout:: command not found

**eMJe009** · 08-11-2012, 12:36 AM

(08-09-2012, 12:12 PM)eMJe009 Wrote: setelah dieksekusi hasilnya malah begini om ?
nie maksudnya gimana om ?

192.168.4.50 - - [09/Aug/2012 00:10:47] "GET / HTTP/1.1" 200 -
192.168.4.50 - - [09/Aug/2012 00:10:48] code 404, message File not found
192.168.4.50 - - [09/Aug/2012 00:10:48] "GET /Java.class HTTP/1.1" 404 -

itu eksekusi yg mana? pas jalanin set atau setelah milih2 menunya?
sepertinya get http ke ip tsb dapat feedback 404 alias ga ada filenya, itu ip hostmu? apachenya jalan normal? ada yg pake port 80 ga?
[/quote]

setelah saya meng eksekusi reverse handler 192.168.1.2 <== ip saya
pada PC laen om..

**koecroet** · 08-11-2012, 01:03 AM

(08-09-2012, 12:12 PM)eMJe009 Wrote: setelah dieksekusi hasilnya malah begini om ?
nie maksudnya gimana om ?

192.168.4.50 - - [09/Aug/2012 00:10:47] "GET / HTTP/1.1" 200 -
192.168.4.50 - - [09/Aug/2012 00:10:48] code 404, message File not found
192.168.4.50 - - [09/Aug/2012 00:10:48] "GET /Java.class HTTP/1.1" 404 -

itu victim baru nge buka halaman palsu milik S.E.T tetapi belum mengeksekusi backdoor java alias belum mengeksekusi verivikasi yes/no dari alert java yg di ciptakan S.E.T. walaupun victim sudah mengklik yes dari alert java yang di ciptakan S.E.T tetapi jika si victim menggunakan antivirus luar yg selalu di update tetap saja attacker tidak akan mendapatkan session meterpreter. dikarenakan payload yg dihasilkan S.E.T terditeksi sebagai virus

iKONspirasi · 08-11-2012, 01:06 AM

(08-11-2012, 12:12 AM)anon03 Wrote:
(08-10-2012, 10:40 PM)konspirasi Wrote: tombol tab itu sebelah atasnya capslock

udah om.,
tpi mlh keluar kyk gnie:

/opt/metasploit/config/database.yml: line 6: development:: command not found
/opt/metasploit/config/database.yml: line 7: adapter:: command not found
/opt/metasploit/config/database.yml: line 8: database:: command not found
/opt/metasploit/config/database.yml: line 9: username:: command not found
/opt/metasploit/config/database.yml: line 10: password:: command not found
/opt/metasploit/config/database.yml: line 11: port:: command not found
/opt/metasploit/config/database.yml: line 12: host:: command not found
/opt/metasploit/config/database.yml: line 13: pool:: command not found
/opt/metasploit/config/database.yml: line 14: timeout:: command not found
/opt/metasploit/config/database.yml: line 16: production:: command not found
/opt/metasploit/config/database.yml: line 17: adapter:: command not found
/opt/metasploit/config/database.yml: line 18: database:: command not found
/opt/metasploit/config/database.yml: line 19: username:: command not found
/opt/metasploit/config/database.yml: line 20: password:: command not found
/opt/metasploit/config/database.yml: line 21: port:: command not found
/opt/metasploit/config/database.yml: line 22: host:: command not found
/opt/metasploit/config/database.yml: line 23: pool:: command not found
/opt/metasploit/config/database.yml: line 24: timeout:: command not found

kok command not found? buka database.yml nya pake apa? vim atau gedit atau kwrite?

(08-11-2012, 12:36 AM)eMJe009 Wrote:
(08-09-2012, 12:12 PM)eMJe009 Wrote: setelah dieksekusi hasilnya malah begini om ?
nie maksudnya gimana om ?

192.168.4.50 - - [09/Aug/2012 00:10:47] "GET / HTTP/1.1" 200 -
192.168.4.50 - - [09/Aug/2012 00:10:48] code 404, message File not found
192.168.4.50 - - [09/Aug/2012 00:10:48] "GET /Java.class HTTP/1.1" 404 -

itu eksekusi yg mana? pas jalanin set atau setelah milih2 menunya?
sepertinya get http ke ip tsb dapat feedback 404 alias ga ada filenya, itu ip hostmu? apachenya jalan normal? ada yg pake port 80 ga?

setelah saya meng eksekusi reverse handler 192.168.1.2 <== ip saya
pada PC laen om..

[/quote]

coba lihat netstat -anpt cari port 80 nyala ga? klo nyala matiin