+- Sinisterly (https://sinister.ly)
+-- Forum: Hacking (https://sinister.ly/Forum-Hacking)
+--- Forum: Network Hacking (https://sinister.ly/Forum-Network-Hacking)
+--- Thread: Tutorial Hacking a Network with Armitage (/Thread-Tutorial-Hacking-a-Network-with-Armitage)
Hacking a Network with Armitage - Anon_Error - 12-09-2012
Hello,
Today I am going to show you how to 'hack' a network. (hack being the generalized term now) But lets get started.
When you are going to break into a network for a pentest or for some other reason it revolves around a few steps.
1.) Research
2.) Recon
3.) Breaking into said network
4.) more recon to find hosts
5.) exploiting these hosts
6.) finding more targets.
You first want to do research on your target finding info out about them that can be useful in the upcoming things. The we go on to recon. Here is where you find potential vulnerabilities, physical and on the net. If you can only access it through ethernet, is there an open plug? Is the wifi open? If not can it be cracked? once you are in the network you will use a network scanner like Angry IP scanner to see how many host are alive quickly by switching the delay down, maximum threads up, and show only alive hosts. Take note of these and scan them with nmap/zenmap or a vulnerability scanner like OpenVAS or Nessus to see what services and vulnerabilities are listed. then save your scan and bring it to a network exploitation framework like metasploit, or the Armitage front end and import your scan. Find a vulnerable target and exploit the target to get a meterpreter session or a shell on the host. once you are in the host run a arp scan and set up pivoting as you attack other hosts on the network. Then if this is a pentest that would be it for the actual exploitation and on to the reporting. If this were not a pen test you can do many things like migrate your meterpreter session and start key logging or put a backdoor in and access it later or make it part of a botnet that speaks to a dns. The possibilities are endless if you have the mind for it.
RE: Hacking a Network with Armitage - Bannedshee - 12-09-2012
Amazing tutorial, nice job error.
RE: Hacking a Network with Armitage - Anon_Error - 12-09-2012
this is why I practice alot with Metasploit and armitage x3
RE: Hacking a Network with Armitage - Kinanizer - 12-09-2012
Thanks for the TUT, you could have put a little more work into it though.
RE: Hacking a Network with Armitage - Anon_Error - 12-09-2012
Alittle more work? This is how easy it is to conduct a pen test or break into a network. Not much more explaining needed. If you are lazy you can launch a Hail Mary attack and let the fireworks fly or target a specific host and send an exploit. Doing the actual breaking in is easy. If you are lazy at the time or want a session on a few just launch the hail mary but if you want to go one at a time use the attack menu and find attacks for your target.
RE: Hacking a Network with Armitage - Bannedshee - 12-09-2012
(12-09-2012, 08:14 PM)Anon_Error Wrote: Alittle more work? This is how easy it is to conduct a pen test or break into a network. Not much more explaining needed. If you are lazy you can launch a Hail Mary attack and let the fireworks fly or target a specific host and send an exploit. Doing the actual breaking in is easy. If you are lazy at the time or want a session on a few just launch the hail mary but if you want to go one at a time use the attack menu and find attacks for your target.
Lol calm down tiger
I suggest you add that to the OP.
RE: Hacking a Network with Armitage - Anon_Error - 12-09-2012
XD i am calm btw :3 sorry if i seemed upset XD
RE: Hacking a Network with Armitage - Skill - 12-09-2012
Mind posting links to some of those programs? Thanks though nice tutorial!
RE: Hacking a Network with Armitage - YP. - 12-09-2012
You encourage me to try armitage.
But for some reason i cant ever find a vulnerable site.
RE: Hacking a Network with Armitage - Anon_Error - 12-10-2012
Armitage is mostly useful for others on the network. At the most Ive had a couple people exploited ;D but Armitage is available with Metasploit as it needs it. Download metasploit from here http://www.metasploit.com/