scaning vulnerability using nessus
first steep
starting nessus using console type /etc/init.d/nessusd start
root@bt:~# /etc/init.d/nessusd start
Starting Nessus : .
second steep
open browser and type localhost:8834 it will open nessus scaning and login by your user and your password.
press scan - add and will open as shown below.
type your
name : scaning
choose a type : Run now
choose policy : Internal Network Scan and
scan targets by using ip : 192.168.0.0/24
so press launch scan. it will running scan about nework of 192.168.0.0/24
and it's will open all service.
all report about vulnerability this network you cam get from this link.
https://docs.google.com/open?id=0B-KNbh5PxtuaMTQxYmM5MWItZTIxYi00MWY1LWE5NjQtMDI4YzY5ODBiZThl
exploit using exploitdb
firs step
information gathering about target - must now about service using about target adn we should already know the weaknesses of a system we already use nessus scanning. form this example i will using a tareget from ip 192.168.0.21.
if you have information gathering and service enumeration
now you open your exploitdb search on
Exploitation Tools - Open Source Exploitation - Exploit-DB - exploitdb seacrh
it's will open exploitdb search
root@bt:/pentest/exploits/exploitdb# ./searchsploit smb
smb this is one of vulner from host 192.168.0.21 and it will open about list of vulner.
on ./searchsploit smb have mani format for runing this exploit for example
.pl, .c, .txt, .py, .rb, and .html.
for exploit .pl
type perl platform/windows/local/16678.rb
for .py an .rb it same of perl.
if .c
type gcc -c platform/windows/local/1911.c -o try
for .txt
type gedit platform/windows/dos/9594.txt
@keep smile & spirit
be fun
Tidak ada komentar:
Posting Komentar