Security Basics
Re: msf > use auxiliary/scanner/vnc/vnc_login Oct 31 2013 05:47PM
ToddAndMargo (ToddAndMargo zoho com) (2 replies)
Re: msf > use auxiliary/scanner/vnc/vnc_login Nov 01 2013 03:13PM
Eric Schultz (fire0088 gmail com) (1 replies)
Re: msf > use auxiliary/scanner/vnc/vnc_login Nov 01 2013 08:08PM
ToddAndMargo (ToddAndMargo zoho com)
On 11/01/2013 08:13 AM, Eric Schultz wrote:

> On Thu, Oct 31, 2013 at 1:47 PM, ToddAndMargo <ToddAndMargo (at) zoho (dot) com [email concealed]> wrote:
>>>> On Oct 31, 2013 1:34 PM, "ToddAndMargo" <ToddAndMargo (at) zoho (dot) com [email concealed]
>>>>
>>>> <mailto:ToddAndMargo (at) zoho (dot) com [email concealed]>> wrote:
>>>>
>>>> Hi All,
>>>>
>>>> I decided to test Metasploit against an open VNC
>>>> server, following the following directions:
>>>>
>>>> https://www.rapid7.com/db/__modules/auxiliary/scanner/vnc/__vnc_login
>>>> <https://www.rapid7.com/db/modules/auxiliary/scanner/vnc/vnc_login>
>>>>
>>>>
>>>> After entering at the msf prompt:
>>>> use auxiliary/scanner/vnc/vnc___login
>>>>
>>>>
>>>> I never get my prompt back.
>>>>
>>>> According to the directions, I should
>>>> be able to enter:
>>>> msf auxiliary(vnc_login) > show actions
>>>>
>>>> What am I missing?
>>>>
>>>> Many thanks,
>>>> -T
>>>>
>>
>> On 10/31/2013 09:17 AM, Ivan Carlos wrote:
>>>
>>> This server is vulnerable against this exploit?
>>>
>>> Ivan Carlos
>>> CISO, Consultant
>>> +55 (11) 98112-0666
>>> www.icarlos.net <http://www.icarlos.net>
>>>
>>
>> Hi Ivan,
>>
>> I think I understand. If the vnc server rejects the
>> exploit, you never get the "msf" prompt back because
>> it never proceeded far enough with the exploit.
>>
>> So, this is good news? Be nice if you got some
>> feedback as to trying and not working.
>>
>> -T
> ToddAndMargo,
>
> Error messages (or a lack of error messages) can vary depending on the
> module used as each module is indivigually programmed. when you have
> questions about a particular module, you should check out the online
> documentation. The information page for the module you're asking about
> is located here:
> http://www.offensive-security.com/metasploit-unleashed/Scanner_VNC_Auxil
iary_Modules
>
> Notice the third dark-grey text box down from the top. This is a
> sample of a typical run of the module (what you can expect to see on
> your screen). Notice at the bottom, there is a message that says:
>
> [*] Scanned 11 of 11 hosts (100% complete)
> [*] Auxiliary module execution

Not seeing it on any of the five graphics.

>
> Do you receive this message? This signifies that the module has
> completed. If you do not see that message, your module is encountering
> hangups or errors.

"Hangups or error" a good thing or a bad thing. The VNC server,
which I could log into before, stopped working after running
the exploit against it. (Its port 5900 TCP closed off to
nmap too.) And suddenly a ton of ports open up when running

# nmap ?script vnc-brute.nse 192.168.200.100

I have tried posting that too, but the idiot gatekeeper robot
won't let it through.

> If valid credentials are discovered, the module does not make a shell
> or establish a VNC connection. You can notice, based on the path for
> the module, that the module is considered a "scanner." If valid
> credentials are discovered they will appear as a green [+] symbols as
> depicted in the grey text box from the link above.

I pressed "enter" after the command and then nothing.

>
> If you want to know more about the metasploit module, feel free to
> view the module's source code. On Kali, it can be located here:
> /usr/share/metasploit-framework/modules/auxiliary/scanner/vnc
>
> Good Luck.
>

------------------------------------------------------------------------

Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------

[ reply ]
RE: msf > use auxiliary/scanner/vnc/vnc_login Nov 01 2013 01:09PM
Ben Ten (web ben0xa com) (1 replies)
Re: msf > use auxiliary/scanner/vnc/vnc_login Nov 02 2013 05:40AM
ToddAndMargo (ToddAndMargo zoho com)


 

Privacy Statement
Copyright 2010, SecurityFocus