Hi,
I have a Kali with Metasploit (172.27.254.15) and Windows 7 Enterprise VM (172.27.254.180).
i'm trying to launch exploit ms10046shortucticondllloader and use payload meterpreter/reverse_tcp.
For some reasons meterpreter session does not open (see captures attached)
Can you please help?
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
Metasploit Error:
Handler Failed to Bind
41
Replies
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
Forum Thread:
How to Hack School Website
11
Replies
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
38
Replies
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
How To:
Hack Apache Tomcat via Malicious WAR File Upload
How To:
Dox Anyone
How To:
Scan for Vulnerabilities on Any Website Using Nikto
How To:
Crack SSH Private Key Passwords with John the Ripper
How To:
Enumerate SMB with Enum4linux & Smbclient
How To:
Phish for Social Media & Other Account Passwords with BlackEye
Advice from a Real Hacker:
How to Know if You've Been Hacked
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
How To:
Scrape Target Email Addresses with TheHarvester
How To:
Hack Wi-Fi Networks with Bettercap
How To:
Crack Shadow Hashes After Getting Root on a Linux System
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
BT Recon:
How to Snoop on Bluetooth Devices Using Kali Linux
How To:
Use Ettercap to Intercept Passwords with ARP Spoofing
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
How To:
Enable Monitor Mode & Packet Injection on the Raspberry Pi
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
How To:
Brute-Force FTP Credentials & Get Server Access
4 Responses
Yeah got the same problem...
Hi,
So meterpreter session is opening but after waiting 10 to 15 min.
Any way to speed it up?
Thanks Ross.
My goal is to show an attack on WIn7/10 machine without user interaction.
Do you know any exploit that works faster with Meterpreter?
Meterpreter isn't your problem, bar an exploit being flagged by AV, in which case you need to leave metasploit behind entirely and code your own tool (which you really should be doing anyway)
If you want to hack into a Windows 7 or Windows 10 machine, the only easy way to do it is the following exploit:
exploit/windows/smb/ms17-010-eternalblue
Note that this exploit only works on up to Windows 7, and only on x64 systems. There is a release for Windows 8.1 as well, but from what I hear it's extremely finicky. I've heard no news on Windows 10 for metasploit.
I do happen to have an Eternalblue exploit which ISN'T restricted to these parameters, but that's a conversation we'd have to have privately, with a closed mind (and an open wallet) - so I'm guessing it isn't appetizing to you.
Beyond that, I can't think of any way that you can gain RCE, beyond the other couple exploits in the MS17-010 family tree, such as ms17-010-psexec. You'll probably want credentials for that one.
Good luck.
Share Your Thoughts