Whykickamoocow Posted March 18, 2012 Posted March 18, 2012 Hi I would like to get some help with metasploit connecting to someones ip address, I know the backdoor attack were you make a file and put it on another pc you are trying to connect to. But ive only done this when you are conected to the same internet connection and the ip router address is somthing like 192.168.1.1. What im tring to do is to connect to another box as if it was a few miles away. Also whats a good why to get someones ip address with out phyisiclly sat at there pc. Thanks Quote
digininja Posted March 18, 2012 Posted March 18, 2012 Have them connect to you rather than you connect to them, that bypasses any problem with NAT as well Quote
Whykickamoocow Posted March 18, 2012 Author Posted March 18, 2012 Im not that great with metasploit and only just started using it a cpl of days ago, how do i get them to connect to me? Quote
digininja Posted March 18, 2012 Posted March 18, 2012 http://www.offensive-security.com/metasploit-unleashed/Main_Page Start at the beginning and work through, you'll get all your answers. Quote
Infiltrator Posted March 19, 2012 Posted March 19, 2012 I would recommend you to get your hands on this Metasploit book. http://www.amazon.com/Metasploit-Penetration-Testers-Guide-ebook/dp/B005EI84KQ/ref=pd_sim_kstore_4?ie=UTF8&m=A24IB90LPZJ0BS Quote
Atomix.Gray Posted March 27, 2012 Posted March 27, 2012 I am confused - about being able to bypass NAT - by just using a reverse connection. I thought you'd have to at least forward ports on your router to point your external IP to your local 'attack' machine. Quote
digininja Posted March 27, 2012 Posted March 27, 2012 NAT (technically PAT in most cases) is a way to bring an external port through to an internal IP so what you need to do is to setup a rule on your router to bring the external port in to your listening IP and port on your machine. The victim then connects to your external IP/port and the router knows to forward traffic to your internal machine. Quote
Atomix.Gray Posted March 27, 2012 Posted March 27, 2012 OK good - I wasn't smoking crack :) Thanks digininja! Quote
arcane Posted March 31, 2012 Posted March 31, 2012 You can run netcat behind a NAT and connect to it using metaspoit from the outside world. You can get someones ip address from email headers or IM, but that is there public ip address. Getting someones private ip address from the internet (WAN) is a bit tricky through. Quote
digininja Posted March 31, 2012 Posted March 31, 2012 If you are in a position to set up NAT on their router and run netcat inside their network and connect to it then working out what their IP address is won't be a problem. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.