I'm pretty curious about Meterpreter. What confuses the hell out of me is how would you judge what exploit to use?
I know it's probably a sense of just knowing the ins and outs. But let's say in a learning environment, how would one gauge what to look for for "xyz" exploit/payload.
>>57118562
Determine the services running on the machine with something like nmap.You can usually determine the OS based on the results. You choose the exploits based on the the OS and version. Real hacksters write their own shit and use Metasploit as a framework, the shit that's included is for display purposes.
In a learning environment, they usually set you up with a victim machine that consists of Windows XP SP1 to start with just to get you familiar with how to navigate and use things.
>>57118562
Use Armitage. It's like a script kiddie GUI for meterpreter.
>>57118562
OpenVAS
>>57118740
Outstanding! Thanks for that response. I've got a "test" machine I've got setup on my own network with win xp...i think servpk 3. Would you recommend downgrading it to sp1? For just getting use to Meterpreter and so on?
>>57119561
Thanks anon for this, I will give it a look.
>>57119700
And thank you as well sir or ma'am.
>>57118562
pff meterpreter, you can't even offuscate a trojan to bypass windows defender.
>>57120327
I'm in a learning mood. And I like people's input I guess :| or more or less what helped them learn whatever. I can simply Google it, but I'd rather discuss.
What would you recommend to put me in the right direction? From someone, who I assume, has experience
>>57118562
You should learn basic networking and programming before trying Metasploit you retarded script kiddie.
>>57120866
>Script Kiddie
Top Kek sir.
And I do have a basic knowledge in net/prog. While I'm not afraid to admit it is basic. I get the jist of everything. Looking to expand what I know is all.