I created a payload and installed it on two different devices with different ips. So if want to reverse the connection using metasploit from a specific payload, how would I do that? As far as I know it connects to only the recent one. Is there any way in msfconsole?
Also, the payload is installed on 3 different devices but when I run "sessions -l" it shows no active sessions. Is anything blocking the reverse connection?
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
Metasploit Error:
Handler Failed to Bind
41
Replies
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
Forum Thread:
How to Hack School Website
11
Replies
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
38
Replies
How To:
Dox Anyone
How To:
Crack Shadow Hashes After Getting Root on a Linux System
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
How To:
Crack SSH Private Key Passwords with John the Ripper
How To:
Exploit EternalBlue on Windows Server with Metasploit
Exploit Development:
How to Write Specific Values to Memory with Format String Exploitation
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
How To:
Brute-Force Nearly Any Website Login with Hatch
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
Hacking Windows 10:
How to Dump NTLM Hashes & Crack Windows Passwords
How To:
Gathering Sensitive Information: Basics & Fundamentals of DoXing
How To:
Scan for Vulnerabilities on Any Website Using Nikto
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
How To:
Hack Apache Tomcat via Malicious WAR File Upload
How To:
Automate Wi-Fi Hacking with Wifite2
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
How To:
Enumerate SMB with Enum4linux & Smbclient
How To:
Use SQL Injection to Run OS Commands & Get a Shell
How To:
Use Kismet to Watch Wi-Fi User Activity Through Walls
9 Responses
To connect to multiple devices at the same time, you need to type set exitonsession false before you type exploit when setting up your listener.
Now to figure out your problem. Was your listener set up before you ran your payload? Are the devices on the same network as your listener? If not, did you set your listener to your private IP and your payload to your public IP? Also, did you port forward your port in your router?
The payload is made with public ip only and that too with no-ip ddns. So the network doesn't matter. The listener wasn't set before running the payload. The port is already forwarded. Infact the payload connects only when I install after exploiting it. It doesn't connect to an already installed payload. How to connect to already installed? And which one?
Some (most) payloads do not keep sending signals after they were initially opened, this means that if the listener was not open when the payload was opened then you screwed up.
So how to make a payload which connects even if the listener was set after the installation?
I suggest you use Veil-Evasion and the base 64 substitution payload. In Veil-Evasion the payload will be converted to .exe. So if you for example exit your session and you then set up your listener again it will automatically start a new session. However I never explicitly tried running the payload beforehand and open my listener afterwards I do think it is possible this way.
But .exe doesn't work on android. Any idea on how to do it on android? When I run sessions-l it shows no active sessions but I have it installed on multiple devices. Why is it so?
Ok, first this is the first mention of you trying it on Android. I had a suspicion that you were talking about that but wasn't sure. If you want the best help, it's best to give as much information relating to the problem as possible.
Now, as I stated, you must have the listener running before you install the app. Once you have a session, you can set persistence. I have not worked on hacking Androids but it's possible that you don't have to reinstall the app on the phone, just open the app again while the listener is running.
If you cannot do that, I am going to assume that you are trying to infect other people and that is illegal. I can offer no more help if that is the case.
I too know thats illegal and thats not the case. I said its installed on multiple devices means I am the one who has installed them and those are my properties.
Coming to the topic, my problem is that when I set exitonsession false it starts multiple sessions but I cant gain access to them. And also, the payload runs as a background activity and there's no option to restart it anyway. If then exploit runs as a background job, whats the way to listen to desired payload.
I tried exploit of java applets to connect on my other laptop with payload of meterpreter and after typing exploit it showed server started.now how I can reconnect to exploited laptop? Bcos when I tried again it says address in use
my Kali version is 1.0.9
Exploited laptop is win8
Share Your Thoughts