This video accompanies the link to the blog post below regarding Microsoft's ms08_067 vulnerability, Veil-Evasion & Backdoor-Factory backdooring a firefox.exe executable on a Windows 2003 Domain Controller and contains step by step instructions on how to carry out this attack with metapsploit and Veil-Evasion on Kali Linux in a lab environment:
https://www.itfellover.com/backdoorin...
Trying this against production systems you are not authorized to attack will get you caught. You have been warned. Only do this to learn and generally have fun.
In this tutorial we will go through the following 7 steps below:
1 - Exploit a Windows 2003 Domain Controller with Metasploit (MS08_067).
2 - Check the shortcuts on the "All Users" desktop.
3 - Pull one of the executables from behind a shortcut on the desktop and backdoor it with Veil-Evasion using the Backdoor-Factory payload.
4 - Check the hash of the file against VirusTotal.
5 - Upload the backdoored executable to the target system.
6 - Configure a listener with Metasploit to receive the shell on the box when the shortcut is clicked.
7 - Be patient.
Kali Attacker = 192.168.1.102
Windows 2003 Domain Controller = 192.168.1.105
Artist used:
Todeskurve
/ todeskurve
Song used:
Angus Toddle - Urban Noise
/ angus-toddle-urban-noise
Check out my blog for more:
www.itfellover.com