EvilZone
Hacking and Security => Hacking and Security => : jeremy78 October 19, 2012, 08:15:14 PM
-
I scanned this website and i got back 3 ports 1 open 2 closed the open one was http(port number 80 protocol TCP) the 2 closed ones were microsoft-ds( port number 445 protocol TCP) and the other one is netbios-ssn(port number 139 protocol TCP). I know I need to write an exploit to get passed them but i don't know if these ports are hackable i know port 80 will be really secure so can you guys help me figure out how i should start the exploit. Thanks.
EDIT: i know python batch and C
-
Find out the version of the http server. Connect with netcat and type in:
GET / HTTP/1.1That should output the version of the http server. Then see if there's already public exploit/PoC out there for this version. If there are no exploits or only PoC then you have to install the http server on a virtual machine and try to exploit it.
Here's a good start on exploitation:
https://www.corelan.be/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/
Good luck, you will need it..
-
I'm no expert, but I'm fairly sure that if the port is closed you can't exploit the server through there, as it is not accepting connections. So your only option would to be go through port 80. Unless you happen to know that one of the other, I'm assuming filtered ports, is actually open.