Book Image

Kali Linux Intrusion and Exploitation Cookbook

By : Dhruv Shah, Ishan Girdhar
Book Image

Kali Linux Intrusion and Exploitation Cookbook

By: Dhruv Shah, Ishan Girdhar

Overview of this book

With the increasing threats of breaches and attacks on critical infrastructure, system administrators and architects can use Kali Linux 2.0 to ensure their infrastructure is secure by finding out known vulnerabilities and safeguarding their infrastructure against unknown vulnerabilities. This practical cookbook-style guide contains chapters carefully structured in three phases – information gathering, vulnerability assessment, and penetration testing for the web, and wired and wireless networks. It's an ideal reference guide if you’re looking for a solution to a specific problem or learning how to use a tool. We provide hands-on examples of powerful tools/scripts designed for exploitation. In the final section, we cover various tools you can use during testing, and we help you create in-depth reports to impress management. We provide system engineers with steps to reproduce issues and fix them.
Table of Contents (18 chapters)
Title Page
Credits
About the Authors
About the Reviewers
www.PacktPub.com
Customer Feedback
Preface

Exploiting vulnerable services (Windows)


In this recipe, we will vulnerable services in Windows. To understand this section, we have a Windows 7 system with some vulnerable software running. We will do a quick enumeration, find vulnerabilities, and exploit them using Metasploit.

Getting ready

In order to start exploiting, we will need the vulnerable Windows OS. Get the IP of that machine. Apart from this, we will have to initialize the Metasploit in the CLI (command-line interface). We are good to go.

How to do it...

  1. Once the Windows 7 image has been downloaded, run an nmap scan to find the available services. Run the following command in the terminal:
nmap -sT -sV -T4 -p 1-65535  <IP address>

The will be as shown in the following screenshot:

  1. As you can see, there are three interesting bits of software running on the remote machine; they are, Konica Minolta FTP Utility ftpd 1.00, Easy File Sharing HTTP Server 6.9 and the service running on 16101 and 16102. Checking in Google, it can...