So.... Everything starts with a seed of social engineering skill, if you never ever practiced or tried to exploit a target by social engineering it ... you should stop now........ JUST KIDDING. Everyone has a bit of "Manipulation" skill, a good example could be --->" You lie to someone and that someone believes you ", but that's not all because you will actually need some knowledge based on hacking.
So let's start, shall we?
What Do We Need?
The things that we 'll need are:
- Port forwarding on port "4444" and "5900".
- Metasploit Framework installed.
- FatRat.
- Mediafire/Google Drive account to upload.
- Creating a VncInject (for fun...I'll explain later in the How-to).
Step 1: Port Forwarding
So, for the over WAN connection, we'll need to open two ports, one on "4444" and one on "5900".
Open the page of the router and login, then go on Firewall --> Port Forwarding
As you can see, there is field "IP Address:", "Protocol : TCP & UDP", "In Port:", "Ext Port:"
In the "IP Address" field fill with your IP address preferable to be static because we'll port forward on a specific IP. Our IP is: 192.168.1.116 which we'll forward.
After filling the "IP Address:" field, choose both on the protocol... that means "TCP - UDP", then fill the "In Port: 4444" and "Ext Port: 4444", then apply the changes. OBS! ---> Some routers are rebooting after applying changes.
Do the same with port "5900". SEE YA IN THE NEXT STEP!
Step 2: Installing Metasploit
If you have a Penetration Testing Linux Distribution, then you already have it. But in case you don't have it you can install it.
I already have it installed.... SEE YA IN THE NEXT STEP!
Step 3: Installation of FatRat
What Is This ?
FatRat is a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack, dll. . Th0is tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software …
Installation
This tool is not pre-installed with Kali Linux, so we'll have to install it from the github
LINK FOR THE TOOL ----> github.com/Screetsec/TheFatRat
After downloading it open a terminal and "cat" the "README.md" file to see the installation steps.
That's all for PART 1 !
See ya in the next one...
Be the First to Respond
Share Your Thoughts