Capture VNC Session of Remote PC using SetToolkit

Today in this article we’ll try to compromise the target through VNC payload attack using very simple method for beginners. In this tutorial they’ll learn how to create a VNC payload using set tool kit and try to achieve VNC shell of victim’s PC.

Let’s Start!!!

Application > social engineering toolkit

A terminal will launch with set tool kit wizard here select first option to start social engineering attacks.

Type 1

Now we have to select another option to choose any one attack among following. Select create a payload and listener.

Type 4

Here we will select our payload option since we are performing VNC attack therefore we need to go with third option for VNC payload.

Type 3

In next step it requires IP address for payload listener which is (attacker’s IP) then after that it will ask to enter the port for reverse listener and that will be 4444.

Now it starts generating VNC payload and save that payload under heighted path.  Explore /root./set//payload.exe and send payload.exe to target.

Further it will ask to start payload listener type Y and hit enter which will start loading metasploit framework.

Here it launches metasploit framework and start multi handler automatically; now once the victim click on payload.exe file sent by attacker, attacker will get victim’s VNC shell.


Our VNC attack using set toolkit is successful and we received victim’s VNC shell on our system.

Author: AArti Singh is a Researcher and Technical Writer at Hacking Articles an Information Security Consultant Social Media Lover and Gadgets. Contact here

Hack Remote PC using PSEXEC Injection in SET Toolkit

Target: Window Server

Attacker machine: kali Linux

 In this article I am going to make powershell injection attack though SEToolkit; for this attack it is necessary that SMB service must be running and you should aware of username and password of your target pc to get the Meterpreter session.

Let’s Begin The Game!!!

Scan the victim IP from NMAP by typing following command on terminal in kali Linux

Nmap –sV

 Under version scan it shows port 445 is open and if you are not aware from port protocol services then let me tell you that port 445 is use for SMB protocol for making communication between two different operating systems like as we have Linux and windows.

Now Click Applications > Exploitation Tools > Social Engineering Toolkit > setoolkit.

A new terminal gets open for setoolkit framework and now you have to follow these steps for making attack on target.

From screenshot you can perceive that it through a menu to select following approach for attack.

Choose penetration testing (fast-track) and type2 for this method.

Fast-Track is an automated penetration suite for penetration testers. So from next screenshot again we have following option, choose PSEXEC Powershell Injection and type 6 for it.

PSEXEC Powershell Injection Attack: This attack will inject a meterpreter backdoor through powershell memory injection. This will avoid Anti-Virus since we will never touch disk or memory. Will require Powershell to be installed on the remote victim machine. You can use either straight passwords or hash values.

Now give following information to execute attack on victim pc.

Enter remote IP as rhost:

Enter username: administrator

Enter password: [email protected]

 If you don’t know the domain name hit enter only for this and same for random select to number of threads hit enter.

Enter listener IP as lhost:

Enter port number: 445

Now this will generate a payload for powershell injection and start loading metasploit framework itself. From below image you will found that through alphabetic shellcode we have got meterpreter session1 open.

Now type sessions to view active session

Further Type sessions –I 1 to get inside meterpreter mode.

Meterpreter> sysinfo

{NOTE: This attack is depending upon the version of SMB PROTOCOL; if version is updated of 2.1 then may be this attack is not successful. Use aggressive scanning method for version detail.}

Author: AArti Singh is a Researcher and Technical Writer at Hacking Articles an Information Security Consultant Social Media Lover and Gadgets. Contact here

Denial of Service Attack on Network PC using SET Toolkit

First open your kali Linux application tab in Exploitation Tools and then chose SET Toolkit

Now press enter

Now choose option 2, “Fast-Track Penetration Testing” and enter

Then choose option 2, “Custom Exploits” and Enter

After that choose option 4, “RDP use after free –Denial of Service” and Enter

Now Enter the IP address of remote pc you want to be crash

Hack Gmail and Facebook of Remote PC using DNS Spoofing and SET Toolkit

First open your kali Linux application tab in Exploitation Tools and then chose SET Toolkit

Now choose option 1, “Social – Engineering Attacks” and Enter

Then choose option 2, “Website Attack Vectors” and Enter

After that choose option 3, “Credential Harvester Attack Method” and Enter

Now choose option 2 Site Cloner and press Enter

For Post back type your IP address and press Enter, After that type the website name you want to be Clone (in my case I am using gmail)

Cloned web page will be saving in /var/www Folder. As shown below.

Now move cloned files of fake page (e.g. Harvester, post & index.html) in /var/www/html folder.

Now right click on harvester .txt file and give read and write permission.

Now open etter.dns file which is in /etc/ettercap folder.

Modify the contents of the etter.dns and add your own pc IP address as A record.

Now Open Ettercap and go to Sniff and choose Unified sniffing.

Select you network interface (in my case interface is eth0)

Now go to hosts and select Scan for hosts. It will show you the connected PC in your network.

Select host list and select your Target after that click on Add to Target 1 (if you want to select more than 1 target then select the target again and click on Add to Target again)

Open Mitm option and select ARP poisoning…

It will give you a Pop up in which select the Sniff remote connection box and hit OK.

Select Plugins and choose Manage the plugins.

IN Plugins option double click on dns_spoof. (It will start DNS spoofing)

Click on start and select Start sniffing

Now, when the victim will open any web page, the page will redirect it to the Fake page you created.

When victim will put there Id & Password, will get all the details.

The Hacked ID & Password of Victim will get saved in /var/www/html/harvester.txt. As shown below.