Comments on: BackTrack 3: Demos of selected tools

By: fuzion

fuzion — Wed, 27 Aug 2008 00:40:31 +0000

Hi,
I have written several howtos for w3af on my new site:
http://nukeit.org/category/tools/

By: fuzion

fuzion — Wed, 30 Jul 2008 20:30:46 +0000

I wrote a script to update w3af and install the new prerequisites to use its new gtkUI:
http://fuzion.rootmybox.org/2008/07/30/w3af-on-backtrack-3-final-svn-style/

By: KING SABRI

KING SABRI — Mon, 14 Jul 2008 23:45:29 +0000

Thanks man

By: n1teshad3

n1teshad3 — Wed, 18 Jun 2008 23:55:05 +0000

Awesome article, there are other sites that explain what these tools do, however none as indepth as yours. As a novice Backtrack user I plan to research and use this more effectively – Thanks for your help

By: Aleksey

Aleksey — Wed, 18 Jun 2008 22:11:39 +0000

No, it should work without joining the domain, perhaps its a bit flaky? I remember I had to disable SMB on the framework machine plus some other services before I got it working.

I think that yes, you can do a mitm attack on a target when it is accessing a share on the network. First you would have to become the man in the middle. Then, you would wait for the target to try to connect to a share on the network (some other legit machine). Intercept that first challenge request and proceed same as the reflection attack except you are now also masquerading as that legit network share. Don’t think metasploit module will do this.

By: Jorge L. Vazquez

Jorge L. Vazquez — Wed, 18 Jun 2008 08:06:51 +0000

I finally got it going, nice exploit…in my case it didn’t work until I joined the target machine to a domain, is that the case..this exploit only works for machine that are part of a domain?…also is it possible to pull a mitm attack on a target when is accessing a share on the network instead of opening an email or web page with the UNC name embedded?
thanks

By: Aleksey

Aleksey — Tue, 17 Jun 2008 20:50:33 +0000

Jorge, the version I have is “Metasploit Framework v3.1-release” for Windows (downloaded from “http://www.metasploit.com/framework/”). The exploit is in exploits > windows > smb > smb_relay (use any of web, console, or gui version). Not sure about the Unix version. The machine I had the framework on was XPSP2 and the test machine was Windows 2000 random service pack. I have just installed the latest 3.1 version of framework and the smb module is still there.

By: jorge l. vazquez

jorge l. vazquez — Tue, 17 Jun 2008 19:07:26 +0000

after watching the metasploit video, I’ve tried the smb relay exploit on mine, but I didn’t find that specific exploit, you mention that it was just showcase last year, but after doing an update of my metasploit still no luck, my question is where did you get your version of metasploit?

thanks

By: taromaru

taromaru — Thu, 12 Jun 2008 13:21:22 +0000

Really nice article to start playing with BT3.

Cheers!

By: targeted website traffic

targeted website traffic — Fri, 23 May 2008 17:45:50 +0000

targeted website traffic…

Hello,…