{"id":3179,"date":"2012-05-24T18:29:15","date_gmt":"2012-05-24T18:29:15","guid":{"rendered":"http:\/\/www.ethicalhacker.com.br\/site\/?p=3179"},"modified":"2019-07-18T12:16:58","modified_gmt":"2019-07-18T15:16:58","slug":"obtendo-desktop-remoto-winxp-sp3-2","status":"publish","type":"post","link":"https:\/\/www.ethicalhacker.com.br\/site\/2012\/05\/exploits\/obtendo-desktop-remoto-winxp-sp3-2\/","title":{"rendered":"Obtendo Desktop Remoto WinXP SP3"},"content":{"rendered":"<p>Neste pequeno tutorial demonstrarei como comprometer um host e ganhar o Desktop Remoto, nosso alvo ser\u00e1 uma m\u00e1quina Win XP SP3 e para tal miss\u00e3o utilizarei o metasploit.<\/p>\n<p>Passo 1 : Iniciar o mestasploit e setar o exploit, utilizaremos a vulnerabilidade ms08_067_netapi:<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r1.png\" class=\"gallery_colorbox\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-3171\" title=\"r1\" src=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r1.png\"  alt=\"\" width=\"330\" height=\"159\" srcset=\"https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r1.png 786w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r1-300x144.png 300w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r1-150x72.png 150w\" sizes=\"auto, (max-width: 330px) 100vw, 330px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>Passo 2 : Setar m\u00e1quina alvo atrav\u00e9s do comando RHOST e m\u00e1quina local atrav\u00e9s do comando LHOST<\/p>\n<p><a href=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/f22.png\" class=\"gallery_colorbox\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-3172\" title=\"f2\" src=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/f22.png\"  alt=\"\" width=\"548\" height=\"61\" srcset=\"https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/f22.png 783w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/f22-300x33.png 300w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/f22-150x16.png 150w\" sizes=\"auto, (max-width: 548px) 100vw, 548px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>Passo 3 : Setar o PAYLOAD , vamos utilizar meterpreter com shell reverso e exploitar o alvo :<\/p>\n<p><a href=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r3.png\" class=\"gallery_colorbox\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-3173\" title=\"r3\" src=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r3.png\"  alt=\"\" width=\"550\" height=\"142\" srcset=\"https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r3.png 785w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r3-300x77.png 300w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r3-150x38.png 150w\" sizes=\"auto, (max-width: 550px) 100vw, 550px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>Passo 4 : Ap\u00f3s o sucesso na invas\u00e3o, atrav\u00e9s do meterpreter criar um user e a senha :<\/p>\n<p><a href=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r4.png\" class=\"gallery_colorbox\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-3174\" title=\"r4\" src=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r4.png\"  alt=\"\" width=\"552\" height=\"141\" srcset=\"https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r4.png 788w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r4-300x76.png 300w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r4-150x38.png 150w\" sizes=\"auto, (max-width: 552px) 100vw, 552px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>Passo 5 : Agora \u00e9 s\u00f3 obter o Desktop Remoto :<\/p>\n<p><a href=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r5.png\" class=\"gallery_colorbox\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-3175\" title=\"r5\" src=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r5.png\"  alt=\"\" width=\"336\" height=\"227\" srcset=\"https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r5.png 800w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r5-300x202.png 300w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r5-150x101.png 150w\" sizes=\"auto, (max-width: 336px) 100vw, 336px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r6.png\" class=\"gallery_colorbox\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-3176\" title=\"r6\" src=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r6.png\"  alt=\"\" width=\"337\" height=\"251\" srcset=\"https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r6.png 801w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r6-300x223.png 300w, https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/r6-150x111.png 150w\" sizes=\"auto, (max-width: 337px) 100vw, 337px\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p><a href=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/tuxme.png\" class=\"gallery_colorbox\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-3476\" title=\"tuxme\" src=\"http:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/tuxme.png\"  alt=\"\" width=\"108\" height=\"92\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"color: #ff0000;\"><strong>Contramedidas:<\/strong><\/span>\u00a0 <span style=\"color: #000000;\">Atualiza\u00e7\u00e3o do Sistema Operacional, n\u00e3o permitir acesso remoto ao Desktop.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n\r\n\t\t<div class='author-shortcodes'>\r\n\t\t\t<div class='author-inner'>\r\n\t\t\t\t<div class='author-image'>\r\n\t\t\t<img src='https:\/\/www.ethicalhacker.com.br\/site\/wp-content\/uploads\/186048_100001838322519_1550894_n-11668_57x57.jpg' alt='' \/>\r\n\t\t\t<div class='author-overlay'><\/div>\r\n\t\t<\/div> <!-- .author-image --> \r\n\t\t<div class='author-info'>\r\n\t\t\t<p>Autor:\u00a0<strong>S\u00edlvio C\u00e9sar Roxo Giavaroto<\/strong><\/p>\n<p>\u00c9 MBA Especialista em Gest\u00e3o de Seguran\u00e7a da Informa\u00e7\u00e3o,\nTecn\u00f3logo em Redes de Computadores, C|EH Certified Ethical Hacker,\natua como Pentest e Analista de Seguran\u00e7a em Servidores Linux no\nGoverno do Estado de S\u00e3o Paulo, Professor Universit\u00e1rio , \u00a0Instrutor\nC|EH e C|HFI.<\/p>\n<p><em>\u00a0<\/em>\r\n\t\t<\/div> <!-- .author-info --><\/p>\r\n\t\t\t<\/div> <!-- .author-inner -->\r\n\t\t<\/div> <!-- .author-shortcodes -->\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Neste pequeno tutorial demonstrarei como comprometer um host e ganhar o Desktop Remoto, nosso alvo ser\u00e1 uma m\u00e1quina Win XP SP3 e para tal miss\u00e3o utilizarei o metasploit. Passo 1 : Iniciar o mestasploit e setar o exploit, utilizaremos a vulnerabilidade ms08_067_netapi: &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Passo 2 : Setar m\u00e1quina [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":3315,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[21,101],"tags":[],"class_list":["post-3179","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-exploits","category-tutorial-backtrack"],"_links":{"self":[{"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/posts\/3179","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/comments?post=3179"}],"version-history":[{"count":26,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/posts\/3179\/revisions"}],"predecessor-version":[{"id":10535,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/posts\/3179\/revisions\/10535"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/media\/3315"}],"wp:attachment":[{"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/media?parent=3179"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/categories?post=3179"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ethicalhacker.com.br\/site\/wp-json\/wp\/v2\/tags?post=3179"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}