简体中文(ZH-CN) English(EN) 繁体中文(ZH-TW) 日本語(JA) 한국어(KO) Melayu(MS) Français(FR) Deutsch(DE)
Home > List of blog posts > Debinject注入获取目标机权限-针对Linux
Blogger Information
Blog 1
fans 0
comment 0
visits 621
Special Recommendation
More>
Related recommendations
Popular Tutorials
More>
Related Tutorials
Popular Recommendations
Latest courses
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template
Debinject注入获取目标机权限-针对Linux
香白菜的小窝
Original
624 people have browsed it

转载自我的博客【www.hackbc.top】感兴趣的小伙伴可以去看看。

Debinject就是把msf的payload注入到deb文件中,然后开启监听得到返回shell

话不多说,发车!呜呜呜~~~  


 捕获.PNG

先把利用的脚本git到本地把~~  

git clone https://github.com/UndeadSec/Debinject.git  

cd Debinjectpython   

debinject.py  

如果运行出错给他个权限再试试~,心中有阴影~  

捕获.PNG   

Debinject根目录有个唯一的deb文件,拉到这里来就可以了,然后设置上一ip和端口 
  捕获.PNG

payload一般就用windows/meterpreter/reverse_Tcp就好  

然后选择y y,就开始自动监听了,然后我们来到Debinject目录下新生成的output目录,里面有个backdoored.deb  

新开一个终端,输入命令dpkg -i backdoored.deb  

安装这个deb软件,(开始飙车~~~) 捕获.PNG

捕获.PNG

这时候在安装的过程中msf那边已经拿到了会话shell,我们去看看  

 捕获.PNG

  捕获.PNG

ok,结束,今天去办个驾照哦,明天秋名山见~  

捕获.PNG

Statement of this Website
The copyright of this blog article belongs to the blogger. Please specify the address when reprinting! If there is any infringement or violation of the law, please contact admin@php.cn Report processing!
All comments Speak rationally on civilized internet, please comply with News Comment Service Agreement
0 comments
Author's latest blog post
About us Disclaimer Sitemap
php.cn:Public welfare online PHP training,Help PHP learners grow quickly!