Description: This is Part 15 of the Security Metasploit Framework Expert (SMFE) course material. You can begin by watching Part 1 here: http://www.securitytube.net/video/2556 . Enjoy! Certifications page: http://www.securitytube.net/cert-list
In this video, we will look at how to backdoor executables with Metasploit. The idea is to use Msfpayload and Msfencode (or Msfvenom which is a combination of both the tools) to take an existing executable and add a payload which Metasploit supports. In the most typical case, we will take a common executable like notepad.exe and then integrate our payload with it. We have 2 choices - use the executable template but only make the payload run or make both the original executable and the payload run. We will discuss both of these cases in this video.
We will also take a quick glance at AV Evasion using a polymorphic encoder which ships with Metasploit along with how to use upx.exe to pack it. Please note that AV evasion is a topic in itself and in this course, we will restrict ourself to what we can accomplish with Metasploit.
Please do leave your comments behind.
Tags: smfe , metasploit , backdoor , rootkit , framework ,
I wish there was a like button in Securitytube :) , by the way, is SET (Social Engineering Toolkit) considered as part of the Metasploit Suite ?
By the way, check the Description of the video, the Certification Page follow link is not correct! :)
really nice vivek :)
Every day I look if there is a new part if this megaprimer!
question: lol, what was the loud noise at 1:38? It sounds like somebody shot somone.. :D
God I wish I could just CP your brain.... Amazing stuff keep up all the work...
I am feeling like my mother, waiting for the next episode of her Favorite series. Continue like that Vivek. For the sound I think that is the final step of someone trying to hack Vivek network ;)
Hi guys
I need help for the video for Part 7 (Killing Av And Disabling Firewall); In video vivek showed that even the windows firewall is on still the exploit is successfully creating session but same is not happening for me; session is not established; any clue? thanks in anticipation.
Hello Friends,
To bypass internet security base antivirus. Watch video
http://youtu.be/aMpLqFxGO0o
It works with putty template.
Thanks Guys! :) I will catch up on the requests and questions in the comments section this weekend :)
In the meantime, please watch the next video:
Railgun Basics: http://www.securitytube.net/video/2710
I need someone who is capable of hacking* websites & accessing their email database
I don't need scraping,web crawling or extractors
I need this sites HACKED so I gain access to their email DB
I will need to test the result u give me,if it checks out,I am willing to pay up to 3000$
per website and 10-20 websites monthly,which will increase upon delivery of faster & quality
service
Pls note,CONTINUITY is what I am after...I NEED A GOOD PARTNER I CAN WORK WITH FOR A VERY
LONG TIME!. I HAVE AT LEAST 500 WEBSITES ON MY LIST AND IM WILLING TO PAY 3000$ PER WEBSITE
PLEASE SEND ME A MAIL IF U CAN DO THIS ASAP ; omorye007 (at) yahoo (dot) com
Cheers
Hello Guys.
I was excelent idea use encoders againts AV. But I think AV´s found out how to secure this.
I was trying against ESET NOD32 v.4.2.76, but I couldnt avoid it :( so I cant do penetrating testing in this way, because client will tell, that nothing cant happend, when AV stop this kind of thread.
I was thinking about taking this course, ... but now I dont know. :(
What do you think?
Tomak.
awesome videos.. Keep up the good work
You are a genius Vivek,
Can this be done to a computer located somewhere else on the internet ???
That's what i am actually trying to do, Can you please show us ( your students, lol...) how to do it ??????????????
Vivek r u live in middle of war zone ? I heard noise sounds like gunshot from some of your videos... xD
Thanks for your time!
Vivek can u make tutorial about how to write my own crypter?
I learned a lot about shellcode, backdoor, reverse connection etc... but I still don't know how to write my own crypter :(
Yet another great video. Thank you Vivek. It would be nice with a whole series dedicated to the topic of AV Evasion and writing encoders also. =)
sir, there is a problem to forward the port 4444 on router.My router is DSL router , i have entered 192.168.1.1 on address bar then router call me for use and pass. i have filled all these parameters, then after it on advance setting , under the NET port triggering , i have entered the application name and port start,port end also on DMZ host i have entered the local ip of my pc and i have saved all these settings. But finally on www.canuseeme.org,when on this address i enter the port number those i have entered in the router, its not work , so sir tell me how i can forward the port on router