In this video I show you how to take a compromised Windows device and use a post module to Dns spoof your way into getting a beef hook we alter the compromised devices host file so when the user types a websites host name its pointed to a ip address of our choosing and not the real one this can be used for many things we also explore the beef hook and what it can do by gaining a additional shell using a hta attack hosted via metasploit on our beef hooked page giving us a multi layered attack and a great amount of access which gives use many options to explore think outside the box with this one as you can change this attack many ways and do many different things with the methods shown here and remember hta attacks do not trigger user account control prompts or smart screen prompts making them much better for many reasons espeically when trying to social engineer someone into downloading and running a payload at the end of the video I quickly go over some of the other things you should do once gaining access. (*"Come find me"*)
Discord Data Zero
Instagram @pwned_exploit
Twitter @Stealth_data_0
Facebook Stealth Data Zero
*RELATED AND MENTIONED VIDEOS*
How to use beef hack any os or almost any device with just a link doesnt matter what version number browser type etc.
how to phish with beef getting passwords multi ways using beef and s.e.t.
Beef hooked phishing pages social engineering plus phishing advanced phishing techniques
Beef plus metasploit exe and apk payload Delivery via beef.
MIGRATION! keep you shell and hide it as well you should try to migrate quickly after gaining remote access.
Windows metepreter guide full break down post exploitation how to hide your shell how to keep your shell stay hidden and much more a must see.
Hacktheworld fud payload generator how to use It and install it to gain a meterpreter shell.
#kalilinux #cybersecurity #pentesting
0 Comments