Metasploit mailing list archives
Re: Privilege escalation on an isolated system
From: "5.K1dd" <5.k1dd () austinhackers org>
Date: Fri, 25 Nov 2011 16:26:29 -0600
Metasploit really isn't designed for such a scenario. You could generate meterpreter as an exe and run it locally, but you'd need a handler to interact with the session. I'm not sure its possible to have the handler and meterpreter running on the same box since they would both be trying to use the same port to communicate. Some of the aux modules come in standalone form on the websites of the various authors. That might be a possible avenue.
Thanks haZ and Roberto. Let me explain the situation again. The Windows system I'm facing is not connected to a network (it has no NICs). I have unprivileged user access into it. It is _not_ an access through a meterpreter shell, it's just a classic user/password combo that I'm using (I have phisical access to the box). My question is: is there a way to leverage MSF's privilege exploitation capabilities in order to get admin privileges on this box? 2011/11/25, Roberto Espreto <robertoespreto () gmail com>:Hi! Launch the Incognito module, list the available tokens and impersonate the one you want. Regards, 2011/11/25 Brahim Sakka <brahim.sakka () gmail com>Hello list, I have a Windows XP SP3 test system with a limited user account. I want to escalate my privileges and "getsystem". Typically, I would generate an evil file with MSF, get a meterpreter shell then getsystem. However, in this particular case, the system cannot be connected to any network (no NICs). Also, I can't install MSF itself on it because I don't have the required privileges. Is it somehow possible to leverage the framework's built-in privilege escalation capabilities in order to get admin priveleges? _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework-- *Roberto S. Soares (espreto)* robertoespreto () gmail com espreto () hacktraining com br www.hacktrainig.com.br http://codesec.blogspot.com Skype: hack_training Twitter @espreto ®_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- Privilege escalation on an isolated system Brahim Sakka (Nov 25)
- Re: Privilege escalation on an isolated system haZard0us (Nov 25)
- Re: Privilege escalation on an isolated system Roberto Espreto (Nov 25)
- Re: Privilege escalation on an isolated system Brahim Sakka (Nov 25)
- Re: Privilege escalation on an isolated system 5.K1dd (Nov 25)
- Re: Privilege escalation on an isolated system Lukas Kuzmiak (Nov 25)
- Re: Privilege escalation on an isolated system Kevin Shaw (Nov 25)
- Re: Privilege escalation on an isolated system Brahim Sakka (Nov 25)
- <Possible follow-ups>
- Re: Privilege escalation on an isolated system James Butler (Nov 26)
- Re: Privilege escalation on an isolated system Brahim Sakka (Nov 27)
- Re: Privilege escalation on an isolated system Lukas Kuzmiak (Nov 27)
- Re: Privilege escalation on an isolated system Justin Rogosky (Nov 28)
- Re: Privilege escalation on an isolated system Tim Brown (Nov 30)
- Re: Privilege escalation on an isolated system Enis Sahin (Nov 30)
- Re: Privilege escalation on an isolated system The Doctor (Dec 01)
- Re: Privilege escalation on an isolated system Brahim Sakka (Dec 01)
- Re: Privilege escalation on an isolated system Brahim Sakka (Nov 27)