Description: This video is part of the Addendum created for the Wi-Fi Security Expert course and certification - http://securitytube.net/certifications . It is being released on SecurityTube as part of our open courseware initiative. Students enrolled for the SWSE will be given a lab manual which tells you how to use these videos to prepare.
In this video, we will look at how a malware could abuse the hosted network feature using Metasploit to create a backdoor entry to a meterpreter session, entirely over a private wireless network.
The idea is that the malware will start the hosted network with a key known to the attacker and bind to a port waiting to start a meterpreter session. The attacker uses the key, connects over the hosted network and finally connects to the victim using Metasploit. This attack can enhance the power of Karmetasploit! how? watch the video :)
Please do leave your comments behind! :)
Tags: swse , hosted network , metasploit , karmetasploit , meterpreter ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
great work vivek thanks. i ask if y can expline how we can melt a backdoor when a client is trying to download an exe file ?is possible with a proxy+dns spoofing ?thank y
Excellent !!! Vivek thanks a lot for these awesome videos... It's been a while since my last comment on Securitytube, anyway i'll will see soon if i'll go for the certificate in the upcomming weeks.
Awesome! Looks like the certifications are having a great affect on the video churn out rate :)
Eagerly looking forward to get into that students portal.
I know u cant show code but you can sent code to my email id......or you can upload the code aaaaaa.
Good Job Vivek .
i waiting for your metasploit book ..
thanks ............
@Seema - if you're talking about the setting up a hosted network and turning it on...it's a 2 line batch file. I found the necessary commands in less than 90 seconds on google.
The .rc file wouldn't take much longer than a couple of minutes.
Since Vivek didn't drop the script, I'm not either. It's really simple though. If you wanted to do it with railgun(a possibility) it would require a bit more work and attaching a debugger to netsh.
Awesome as always, Vivek. How about a video on airtun-ng?
this is really mind blowing.awesome awesome ........................................ :-)
Can you say Rubby Ducky¿¿
Great Job!
waiting for the next one.
thank you vivek.
Thank you vivek . this videos are greats .
i waiting for next : Security Tube Metasploit Certification and Metasploit Book
So is there a different set of commands if this was ran from a metasploit meterpreter session? because the netsh command in meterpreter throws me to firewalls and stuff but I can't seem to find anything about WLAN? Tried as user and system tried shell and excute cmd all no go... Any help in the right direction would be nice thx and as always amazing videos
@shrekcoll I will be posting a new Metasploit series soon. Keep the questions for that :)
@m0ei Thanks my friend! even i missed making the videos but now i can do it more often as the site is supported. Look forward to seeing you as an SWSE student :)
@John-Nash Thanks! the portal is up today.
@Seema Sorry no code :) @Andrew can help though :)
@soheil.r It will be out in January 2013. Stay tuned!
@WCNA Thanks for the addition. Will be done by next week for sure.
@neo thanks :)
@BoNk3rZz use an "execute -f cmd.exe" in meterpreter and then use netsh within it.
@pitsputs most welcome! next one will be on air tun-ng
Next video is up: Students Portal preview for SWSE :) http://www.securitytube.net/video/2342
Not sure how to go about this so I'm actually going to wait for viveks approval. I have spent all day encoding the videos and placing them nicely onto about 4 Dual layer DVD's with absolutely awesome quality including a nice SWSE background I have created and a nice Black and grey look to kind of spice it up
: ) I wouldn't mind making them for everyone should they want but it is very time consuming for me being one person and does cost me $ which i dont really have.I might have to send them to Vivek and perhaps he could take donations for his site if someone would like to have the set. They take up the full screen of the TV which for me made a difference of night and day while viewing the videos & I can sit back on my couch and scroll through the videos and fast forward and rewind as well. I love it! My life is 100x easier now.I posted some pics under neath the post so you guys can see how it came out.Any feed back is appreciated. Were a small community and I just wanted to help everyone out. hope someone finds my work and time usefull and maybe you can study in comfort now as I will : ) here are the links to the Images.
http://4.bp.blogspot.com/-Ry91OX1ZmiI/TsxqVUI4mVI/AAAAAAAABOM/pUgbGmAngZU/s1600/IMG181.jpg
http://4.bp.blogspot.com/-goMCedcQ1hY/TsxqZUfjIFI/AAAAAAAABOU/B2WusvF6EJQ/s1600/IMG180.jpg
http://3.bp.blogspot.com/-cxcvILV_8KI/TsxqeRq5yiI/AAAAAAAABOc/A90EWDU4U-A/s1600/IMG179.jpg
Excelent videos!!! :)