Video - Using Metasploit to Launch a DOS Attack Against Windows XP

8 minutes
Share the link to this page
Copied
  Completed
You need to have access to the item to view this lesson.
One-time Fee
$99.99
List Price:  $139.99
You save:  $40
€95.97
List Price:  €134.37
You save:  €38.39
£79.80
List Price:  £111.73
You save:  £31.92
CA$139.82
List Price:  CA$195.75
You save:  CA$55.93
A$153.75
List Price:  A$215.26
You save:  A$61.51
S$134.64
List Price:  S$188.51
You save:  S$53.86
HK$778.36
List Price:  HK$1,089.74
You save:  HK$311.37
CHF 89.34
List Price:  CHF 125.09
You save:  CHF 35.74
NOK kr1,107.14
List Price:  NOK kr1,550.05
You save:  NOK kr442.90
DKK kr715.75
List Price:  DKK kr1,002.09
You save:  DKK kr286.33
NZ$171.37
List Price:  NZ$239.93
You save:  NZ$68.55
د.إ367.26
List Price:  د.إ514.18
You save:  د.إ146.92
৳11,945.63
List Price:  ৳16,724.36
You save:  ৳4,778.73
₹8,442.99
List Price:  ₹11,820.52
You save:  ₹3,377.53
RM446.75
List Price:  RM625.47
You save:  RM178.72
₦169,271.38
List Price:  ₦236,986.70
You save:  ₦67,715.32
₨27,777.22
List Price:  ₨38,889.22
You save:  ₨11,112
฿3,446.26
List Price:  ฿4,824.91
You save:  ฿1,378.64
₺3,454.90
List Price:  ₺4,837
You save:  ₺1,382.10
B$580.04
List Price:  B$812.08
You save:  B$232.04
R1,811.35
List Price:  R2,535.96
You save:  R724.61
Лв187.69
List Price:  Лв262.77
You save:  Лв75.08
₩140,436.95
List Price:  ₩196,617.35
You save:  ₩56,180.40
₪370.16
List Price:  ₪518.24
You save:  ₪148.08
₱5,893.31
List Price:  ₱8,250.87
You save:  ₱2,357.56
¥15,475.45
List Price:  ¥21,666.25
You save:  ¥6,190.80
MX$2,042.64
List Price:  MX$2,859.78
You save:  MX$817.14
QR364.56
List Price:  QR510.41
You save:  QR145.84
P1,367.06
List Price:  P1,913.94
You save:  P546.88
KSh12,945.58
List Price:  KSh18,124.33
You save:  KSh5,178.75
E£4,964.52
List Price:  E£6,950.52
You save:  E£1,986
ብር12,237.67
List Price:  ብር17,133.23
You save:  ብር4,895.55
Kz91,290.87
List Price:  Kz127,810.87
You save:  Kz36,520
CLP$98,658.13
List Price:  CLP$138,125.33
You save:  CLP$39,467.20
CN¥724.22
List Price:  CN¥1,013.94
You save:  CN¥289.72
RD$6,024.63
List Price:  RD$8,434.73
You save:  RD$2,410.09
DA13,426.15
List Price:  DA18,797.15
You save:  DA5,371
FJ$227.57
List Price:  FJ$318.61
You save:  FJ$91.03
Q771.64
List Price:  Q1,080.33
You save:  Q308.69
GY$20,913.50
List Price:  GY$29,279.73
You save:  GY$8,366.23
ISK kr13,966.60
List Price:  ISK kr19,553.80
You save:  ISK kr5,587.20
DH1,005.63
List Price:  DH1,407.93
You save:  DH402.29
L1,821.98
List Price:  L2,550.85
You save:  L728.86
ден5,904.20
List Price:  ден8,266.12
You save:  ден2,361.91
MOP$801.48
List Price:  MOP$1,122.11
You save:  MOP$320.62
N$1,812.81
List Price:  N$2,538.01
You save:  N$725.20
C$3,678.31
List Price:  C$5,149.78
You save:  C$1,471.47
रु13,500.25
List Price:  रु18,900.90
You save:  रु5,400.64
S/379.05
List Price:  S/530.69
You save:  S/151.63
K402.47
List Price:  K563.48
You save:  K161
SAR375.40
List Price:  SAR525.58
You save:  SAR150.17
ZK2,764.29
List Price:  ZK3,870.12
You save:  ZK1,105.82
L477.77
List Price:  L668.90
You save:  L191.12
Kč2,432.37
List Price:  Kč3,405.42
You save:  Kč973.04
Ft39,496.05
List Price:  Ft55,296.05
You save:  Ft15,800
SEK kr1,103.50
List Price:  SEK kr1,544.95
You save:  SEK kr441.44
ARS$100,374.93
List Price:  ARS$140,528.92
You save:  ARS$40,153.99
Bs690.75
List Price:  Bs967.07
You save:  Bs276.32
COP$438,931.09
List Price:  COP$614,521.09
You save:  COP$175,589.99
₡50,918.63
List Price:  ₡71,288.12
You save:  ₡20,369.49
L2,526.16
List Price:  L3,536.73
You save:  L1,010.56
₲780,388.98
List Price:  ₲1,092,575.79
You save:  ₲312,186.81
$U4,261.82
List Price:  $U5,966.72
You save:  $U1,704.90
zł416.31
List Price:  zł582.85
You save:  zł166.54
Already have an account? Log In

Transcript

Greetings and initiate video presentation we're going to see how we go about using Metasploit to launch a DoS attack against a Windows XP machine. Meta sploit is an all around hacking suite of tools that comes with Cali landings. It is used by pen testers and hackers alike. This point comes with various exploits and payloads similar to commercial applications costing thousands of dollars. And an example of that would be Korean Pac. So as with every lab before we get too far along, let's make sure that we have network connectivity between our Kali machine and our target which is our XP host.

So I verified that I do have an IP address assigned to my Ethernet zero adapter on my Kali machine, and that IP address is 192 dot 168 dot 145 dot one three. Now this is my IP address not yours. Your IP address will differ. Let's go on over to my Windows XP machine and let's check out the IP address assigned to it. The IP address assigned to my Windows XP machine is 192 dot 168 dot 145 dot 131. Alright, so now let's go back over to Kali.

And we're going to ping that IP address. If both of these machines are on the same network sharing the same network ID, they should be able to see each other and his ping should be successful. And I get back nothing but positive responses. So I can do a Ctrl C, break that sequence. And now we're ready to continue on with the lab. A couple of caveats that we have to take care of before we get too far along.

One of those is make sure that your Windows Firewall on the Windows XP machine is disabled. Secondly, make sure that RDP is enabled on the remote target. So mine says that no firewall is turned on. And if I click on my start button, I right Click on my computer, I go to properties, and I go to remote, you'll see that the box is checked to allow users to connect remotely to this computer. We're good to go. On my Kali machine, I have typing the command clear on my terminal.

And that's going to give me a clean terminal to start work with. And we are now ready to begin the lab. So for grins and giggles, we can treat this as if this was the first time I've ever seen this network. And I need to find out what machines are running on this network and what their operating systems are. I also like to find out what services or ports are currently open on those machines. So I can type in 192 dot 168 dot 145 dot zero, forward slash 24 to scan the entire network, or in this case, since I already know that my Windows XP has the host IP a 131.

We can preclude all that and we can just get to the lab itself. And do the N map space dash small letter S, capital V and the IP address of the host, I want to scan, which is 131. So I'm going to go ahead and hit Enter. And in just a moment, the results of the scan will come back to me. So if I had done the network, scan every machine on the network that was available and connected to the same network, I would have got results back telling me what the operating system was, what the ports were and what services were running along with your IP address. Now, in this case, we know that this is an XP machine.

And we can confirm that because when I use this S, capital V switch within map, it looks for the OS. It tries to identify the OS and it comes back and it tells you what it believes the operating system is it doesn't always work, but a lot of times it does. And map also provides me with the ports and the services. that are currently running on this remote target. This is going to allow me to determine what exploits I can run. So currently I have a couple of ports that I'm interested in.

The first one is this SMB service that is running on port 445. The other one is RDP, which is using Port 3389. Again, I've cleared my terminal screen so that I have a clean working area. And now I'm going to go ahead and launch meta sploit we're going to do that by typing in m s f posle. And in just a moment, meta sploit will start up to see all the exploits that are currently available up inside of meta sploit. I can type in show exploits, and it'll bring up an entire list of all the exploits that are available to me.

Notice that all of these exploits are also rated by how successful they are. You either get a normal an average or a great but in this case I have a particular exploit that I want to find out I can try to scroll through all of these hundreds of exploit looking for this particular one, but I can also use the search feature. So I can type in search. And the information that describes the exploit in this case is the Microsoft Security bulletin 12 dash zero to zero. And if I hit Enter in just a moment, it's going to do a search and come up with this particular exploit. This module exploits the Microsoft 12 dash zero to zero RDP vulnerability which allows for remote code execution when an attacker sends a sequence of specifically crafted RDP packets to an infected system.

By default, the remote desktop protocol RDP is not enabled on any Windows operating system. So systems that do not have RDP enabled are not at risk. So to see the effects of this denial of service attack on this Windows XP target We need to have the Windows XP open because it's going to happen very quickly. So what I've done here is I have stacked my two operating systems Kali and Windows XP side by side. And I did this by going down to my taskbar, and right clicking and then I chose, I said, Show windows stack that brings both of them into the one monitors side by side, we're now ready to begin this denial of service attack. Now to do this, what I'm going to do is I'm going to copy this particular exploit right here, I'm gonna say copy.

I'm gonna go down here, and I'm going to type in you. And now I'm just going to right click, and I'm going to paste. Once that's done, all I have to do is hit Enter, and you'll notice that my prompt changes to let me know that I'm now using that exploit. This is a very simple exploit. So to see the options that I must configure, I can just type in show options. And you'll see that it says, the remote host must be configured remote Port 3389 is already set for us.

So I'm going to go ahead and set the remote host IP address for this particular exploit. So this is a good time to confirm that this is the IP address of your target. There's nothing wrong with going over and finding the IP address for this particular machine. Because we only want to do this once. We don't want to be banging our head on the keyboard three or four times because we type in the wrong IP address. I'm ready now to hit Enter.

And lets me know that the remote host IP address has been set. We're now ready to bring down our Windows XP machine using this denial of service attack. To do this, I'm just going to go ahead and run the exploit by using the exploit command. I'm going to go ahead and hit enter. Now you have to keep your eyes on the Windows XP target because this happens very quickly. And the Windows XP machine rebooted.

In this short video presentation, you got to see how easy it was to create a denial of service attack onto a Windows XP target using the meta sploit framework. That concludes this short video presentation. If you have any questions or concerns about the contents of this video or the lab, please do not hesitate to reach out and contact your instructor and I'll see you in my next video.

Sign Up

Share

Share with friends, get 20% off
Invite your friends to LearnDesk learning marketplace. For each purchase they make, you get 20% off (upto $10) on your next purchase.