January 2015 - Ahmad Mahfouz

By Ahmad
Posted on January 12, 2015
Posted in Linux

Convert VirtualBox HardDisk To VMware

hello in this article we will simply convert vhd file (VirtualBox disk image) to VMware disk our VirtualBox disk is “systemdisk.vhd” we will use qemu emulator to convert the disk our target app to do the convert is qemu-img

qemu-img convert -f vpc -O vmdk systemdisk.vhd systemdisk.vmdk

1	qemu-img convert -f vpc -O vmdk systemdisk.vhd systemdisk.vmdk

By Ahmad
Posted on January 8, 2015
Posted in Security, tech

port forward & pivoting with meterpreter

Let’s assume u attacked machine with 2 nic cards our IP is 10.0.0.5 first, one ip is 10.0.0.10 that you reach it from and in ifconfig shows, the machine has a different IP 10.0.2.30 you can scan the network 10.0.2.x via meterpreter arp_scan

meterpreter > run arp_scan -r 10.0.2.1-255

1	meterpreter > run arp_scan -r 10.0.2.1-255

we can connect to the RDP server of the machine 10.0.2.30

By Ahmad
Posted on January 8, 2015
Posted in Firewall, Linux

IPTABLES redirect all ports to one port

hello this iptables rule to redirect all incoming traffic from all ports to one port example 80 on ip 192.168.1.10

iptables -A PREROUTE -t nat -i eth0 -p tcp  --dport 1:65535 -j DNAT --to-destination 192.168.1.10:80

1	iptables -A PREROUTE -t nat -i eth0 -p tcp --dport 1:65535 -j DNAT --to-destination 192.168.1.10:80

enjoy

By Ahmad
Posted on January 8, 2015
Posted in Security

MetaSploit Payload to Executable EXE

# msfvenom
No options
Usage: /opt/metasploit/apps/pro/msf3/msfvenom [options] <var=val>

Options:
    -p, --payload    <payload>       Payload to use. Specify a '-' or stdin to use custom payloads
    -l, --list       [module_type]   List a module type example: payloads, encoders, nops, all
    -n, --nopsled    <length>        Prepend a nopsled of [length] size on to the payload
    -f, --format     <format>        Output format (use --help-formats for a list)
    -e, --encoder    [encoder]       The encoder to use
    -a, --arch       <architecture>  The architecture to use
        --platform   <platform>      The platform of the payload
    -s, --space      <length>        The maximum size of the resulting payload
    -b, --bad-chars  <list>          The list of characters to avoid example: '\x00\xff'
    -i, --iterations <count>         The number of times to encode the payload
    -c, --add-code   <path>          Specify an additional win32 shellcode file to include
    -x, --template   <path>          Specify a custom executable file to use as a template
    -k, --keep                       Preserve the template behavior and inject the payload as a new thread
    -o, --options                    List the payload's standard options
    -h, --help                       Show this message
        --help-formats               List available formats

# msfvenom

No options

Usage: /opt/metasploit/apps/pro/msf3/msfvenom [options] <var=val>

Options:

-p, --payload <payload> Payload to use. Specify a '-' or stdin to use custom payloads

-l, --list [module_type] List a module type example: payloads, encoders, nops, all

-n, --nopsled <length> Prepend a nopsled of [length] size on to the payload

-f, --format <format> Output format (use --help-formats for a list)

-e, --encoder [encoder] The encoder to use

-a, --arch <architecture> The architecture to use

--platform <platform> The platform of the payload

-s, --space <length> The maximum size of the resulting payload

-b, --bad-chars <list> The list of characters to avoid example: '\x00\xff'

-i, --iterations <count> The number of times to encode the payload

-c, --add-code <path> Specify an additional win32 shellcode file to include

-x, --template <path> Specify a custom executable file to use as a template

-k, --keep Preserve the template behavior and inject the payload as a new thread

-o, --options List the payload's standard options

-h, --help Show this message

--help-formats List available formats

Ahmad Mahfouz

Month: January 2015

Convert VirtualBox HardDisk To VMware

port forward & pivoting with meterpreter

IPTABLES redirect all ports to one port

MetaSploit Payload to Executable EXE