Metasploit mailing list archives
Re: Framework Digest, Vol 22, Issue 13
From: "Moshe Ben Simon" <moshe () injection co il>
Date: Wed, 18 Nov 2009 15:20:06 +0200
Someone know why the adobe_pdf_exe doesn't work on windows platform..? He doesn't find the input file... I read about setting homedrive..homepath... Help.. :) -----Original Message----- From: framework-bounces () spool metasploit com [mailto:framework-bounces () spool metasploit com] On Behalf Of framework-request () spool metasploit com Sent: Wednesday, November 18, 2009 12:54 PM To: framework () spool metasploit com Subject: Framework Digest, Vol 22, Issue 13 Send Framework mailing list submissions to framework () spool metasploit com To subscribe or unsubscribe via the World Wide Web, visit https://mail.metasploit.com/mailman/listinfo/framework or, via email, send a message with subject or body 'help' to framework-request () spool metasploit com You can reach the person managing the list at framework-owner () spool metasploit com When replying, please edit your Subject line so it is more specific than "Re: Contents of Framework digest..." Today's Topics: 1. Re: Metasploit 3.3 in Windows 2008 Server (Genesys Seguran?a TI) 2. Re: db_autopwn problem and suggestions (HD Moore) 3. Re: Metasploit 3.3 in Windows 2008 Server (?????? *) 4. apache_mod_rewrite_ldap problem (Genesys SecTI) 5. Feature Request - Use db_hosts to auxiliary (Genesys SecTI) 6. Re: apache_mod_rewrite_ldap problem (Patrick Webster) 7. (no subject) (Nguyen Huynh) ---------------------------------------------------------------------- Message: 1 Date: Wed, 18 Nov 2009 01:48:37 -0300 From: Genesys Seguran?a TI <seguranca () meupctravou com br> To: <framework () spool metasploit com> Subject: Re: [framework] Metasploit 3.3 in Windows 2008 Server Message-ID: <BLU0-SMTP877B78053C555210E081AF95A30 () phx gbl> Content-Type: text/plain; charset="iso-8859-1" HD, Thank you for the quick answer. I was very impressed, only after 10 minutes you solved and answered a lot of thing. :) I will not reply the other emails cause they?re solved to me, thank you again. But... The problem still in my Windows 2008 server. Running at Administrator, same problem. Really, no log found. Uninstalled and installed again, twice, same problem. Downloaded metasploit 3.2, installed, msfgui not working, but msfweb running ok! Uninstalled 3.2 and reinstalled 3.3 . Again, same problem. Investigating, discovered who maybe the problem, the cygwin. Rxvt.exe called from the batchs don?t works. Called shell.bat, winshell.bat, same problem: black screen, 1-2 seconds, closes, without warning. Called only rxvt.exe, it open a white screen. Called rxvt.exe -e /bin/bash --login, black screen, and closes. Tried rxvt.exe -e /bin/bash --login in my Windows 7, works fine, appears a cygwin shell with a prompt. Defined manually the PATH, %BASE% and the TARG variables, problem still. Need suggestions. The problem is only with me or other people with Windows 2008 server had problems? Thanks, Diogo -----Mensagem original----- De: framework-bounces () spool metasploit com [mailto:framework-bounces () spool metasploit com] Em nome de HD Moore Enviada em: quarta-feira, 18 de novembro de 2009 00:06 Para: framework () spool metasploit com Assunto: Re: [framework] Metasploit 3.3 in Windows 2008 Server On Wed, 2009-11-18 at 02:55 +0000, Genesys SecTI wrote:
I have downloaded and installed the metaspoit-3.3 in the Windows Server 2008 PT, installation is ok, but when try to run, it just open the "black screen", past 3 seconds, and closes. It happened with msfconsole and msfupdate. Where I can found a log or something who helps me/us to find the problem?
Try running it as Administrator - you should see something like "Configuring multi-user permissions for first run"... If this doesn't show up, you can try looking under $INST\msf3\home\<user>\.msf3\logs but this likely wont exist if you dont see the first message. -HD _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework ------------------------------ Message: 2 Date: Tue, 17 Nov 2009 22:51:54 -0600 From: HD Moore <hdm () metasploit com> To: framework () spool metasploit com Subject: Re: [framework] db_autopwn problem and suggestions Message-ID: <1258519914.15513.111.camel@localhost> Content-Type: text/plain; charset="UTF-8" On Wed, 2009-11-18 at 06:56 +0300, kalgecin () gmail com wrote:
i have a suggestion, in my lab i have one windows vista and two linux boxes. when i scan them and do autopwn. but to my disappointment, it tries to exploit iis on the linux boxes. this really takes a long time and is useless. so my request is to add os support to the autopwn
If you use a vulnerability scanner with the -x flag instead of nmap with -p mode it cross-references the vulnerabilities. Stil, autopwn is pretty useless. -HD ------------------------------ Message: 3 Date: Wed, 18 Nov 2009 12:48:41 +0530 From: ?????? * <tas0584 () gmail com> To: Genesys Seguran?a TI <seguranca () meupctravou com br> Cc: framework () spool metasploit com Subject: Re: [framework] Metasploit 3.3 in Windows 2008 Server Message-ID: <c40bb5980911172318t3f849ae9v12570665705bb0c3 () mail gmail com> Content-Type: text/plain; charset="windows-1252" Hi, Ignore if I have not understood you correctly or we are talking something different. I was having a similar problem running it on my vista box. The click opens the command prompt and then disappear. When you install metaspolit 3.2 it creates a folder msf32 in the %Appdata%\Roaming folder by default for me. I cut the folder and pasted that in Local folder. Go one step up if you really wish to do that. After this it worked with charm. I dont know if what did was right but it worked for me. Cheers TAS! 2009/11/18 Genesys Seguran?a TI <seguranca () meupctravou com br>
HD, Thank you for the quick answer. I was very impressed, only after 10
minutes
you solved and answered a lot of thing. :) I will not reply the other emails cause they?re solved to me, thank you again. But... The problem still in my Windows 2008 server. Running at Administrator, same problem. Really, no log found. Uninstalled and installed again, twice, same problem. Downloaded metasploit 3.2, installed, msfgui not working, but msfweb running ok! Uninstalled 3.2 and reinstalled 3.3 . Again, same problem. Investigating, discovered who maybe the problem, the cygwin. Rxvt.exe called from the batchs don?t works. Called shell.bat, winshell.bat, same problem: black screen, 1-2 seconds, closes, without warning. Called only rxvt.exe, it open a white screen. Called rxvt.exe -e /bin/bash --login, black screen, and closes. Tried rxvt.exe -e /bin/bash --login in my Windows 7, works fine, appears a cygwin shell with a prompt. Defined manually the PATH, %BASE% and the TARG variables, problem still. Need suggestions. The problem is only with me or other people with Windows 2008 server had problems? Thanks, Diogo -----Mensagem original----- De: framework-bounces () spool metasploit com [mailto:framework-bounces () spool metasploit com] Em nome de HD Moore Enviada em: quarta-feira, 18 de novembro de 2009 00:06 Para: framework () spool metasploit com Assunto: Re: [framework] Metasploit 3.3 in Windows 2008 Server On Wed, 2009-11-18 at 02:55 +0000, Genesys SecTI wrote:I have downloaded and installed the metaspoit-3.3 in the Windows Server 2008 PT, installation is ok, but when try to run, it just open the "black screen", past 3 seconds, and closes. It happened with msfconsole and msfupdate. Where I can found a log or something who helps me/us to find the problem?Try running it as Administrator - you should see something like "Configuring multi-user permissions for first run"... If this doesn't show up, you can try looking under $INST\msf3\home\<user>\.msf3\logs but this likely wont exist if you dont see the first message. -HD _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
-- Cheers! TAS -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.metasploit.com/pipermail/framework/attachments/20091118/7fdcec5 7/attachment-0001.html> ------------------------------ Message: 4 Date: Wed, 18 Nov 2009 07:38:24 +0000 From: Genesys SecTI <seguranca () meupctravou com br> To: Framework Spool <framework () spool metasploit com> Subject: [framework] apache_mod_rewrite_ldap problem Message-ID: <BLU137-W26980F7FA0A6A63266314395A30 () phx gbl> Content-Type: text/plain; charset="iso-8859-1" Hi (again), When try to use the exploit apache_mod_rewrite_ldap, it appears: msf exploit(apache_mod_rewrite_ldap) > exploit [-] Exploit failed: No encoders encoded the buffer successfully. [*] Exploit completed, but no session was created. or... ./msfcli exploit/windows/http/apache_mod_rewrite_ldap RHOST=127.0.0.1 PAYLOAD=windows/shell_bind_tcp E [*] Please wait while we load the module tree... [-] Exploit failed: No encoders encoded the buffer successfully. Tried both in BackTrack 4 and Windows 7, SVN updated 1 minute ago. I think it was discussed before, but not found anything in google. Can help? Thanks again, Genesys _________________________________________________________________ Windows Live: Keep your friends up to date with what you do online. http://www.microsoft.com/middleeast/windows/windowslive/see-it-in-action/soc ial-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:en-xm:SI_SB_1:092010 -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.metasploit.com/pipermail/framework/attachments/20091118/9495428 d/attachment-0001.html> ------------------------------ Message: 5 Date: Wed, 18 Nov 2009 07:55:47 +0000 From: Genesys SecTI <seguranca () meupctravou com br> To: Framework Spool <framework () spool metasploit com> Subject: [framework] Feature Request - Use db_hosts to auxiliary Message-ID: <BLU137-W37F5C3197D1D74E2B47F7495A30 () phx gbl> Content-Type: text/plain; charset="iso-8859-1" Hi (again again again), One suggestion to development. It is possible the auxiliaries (e.g. smb_login, ftp_anonymous) use the hosts who are stored in db_hosts instead of variable RHOSTS? Application: Nmaped or Nessus-ed searching from responsible hosts with open 445 port. For example, from 254 hosts, the scan returns only 20, not-consecutives. To use it in auxiliary, i need to put the hosts one by one in variable RHOSTS or set to scan the all 254 hosts again. If could use only the 20 stored in db_hosts, it reduces the job. In C-small-classes, dont make some diference. But in large networks, it more interesting you select the hosts to test based in some criteria and filtered, in most cases grabbed from an external list like a nmap XML or a Nessus NBE report. Especialy in the case of responsible-hosts and open ports. Not sure if this are difficult to dev, but sent the suggestion to discuss, and help with anything I can do. Thanks, sorry for poor english again, trying to be understood. Genesys _________________________________________________________________ Windows Live Hotmail: Your friends can get your Facebook updates, right from Hotmail?. http://www.microsoft.com/middleeast/windows/windowslive/see-it-in-action/soc ial-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:en-xm:SI_SB_4:092009 -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.metasploit.com/pipermail/framework/attachments/20091118/52370f2 6/attachment-0001.html> ------------------------------ Message: 6 Date: Wed, 18 Nov 2009 19:55:12 +1100 From: Patrick Webster <patrick () aushack com> To: Genesys SecTI <seguranca () meupctravou com br> Cc: Framework Spool <framework () spool metasploit com> Subject: Re: [framework] apache_mod_rewrite_ldap problem Message-ID: <df4671b50911180055g60f57c98p4e81a83a54a9d93b () mail gmail com> Content-Type: text/plain; charset=ISO-8859-1 Try windows/shell/bind_tcp instead. -Patrick ------------------------------ Message: 7 Date: Wed, 18 Nov 2009 18:47:21 +0800 (SGT) From: Nguyen Huynh <nguyen_huynh2007 () yahoo com> To: Framework () spool metasploit com Subject: [framework] (no subject) Message-ID: <35380.84832.qm () web76502 mail sg1 yahoo com> Content-Type: text/plain; charset="utf-8" I'm learning about metasploit. And I want to consult you some questions ? 1. What is the better metasploit with another tools? 2.What is the tendency of development of metasploit in future? Th? s?u ng?y 13 c? th?t s? l? ng?y xui x?o? Nghe ? ki?n c?a m?i ng??i! http://vn.answers.yahoo.com -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.metasploit.com/pipermail/framework/attachments/20091118/f4f2b6a 2/attachment.html> ------------------------------ _______________________________________________ Framework mailing list Framework () spool metasploit com https://mail.metasploit.com/mailman/listinfo/framework End of Framework Digest, Vol 22, Issue 13 ***************************************** _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- Re: Framework Digest, Vol 22, Issue 13 Moshe Ben Simon (Nov 18)