Description: This is Part 8 of the Security Metasploit Framework Expert (SMFE) course material. You can begin by watching Part 1 here: http://www.securitytube.net/video/2556 . Enjoy! Certifications page: http://www.securitytube.net/cert-list
In this video, we will understand more about Windows sessions, desktops - both interactive and non-interactive, and the essential role they play in getting things done during post exploitation. What we will see is that unless we are associated with the WinSta0 desktops - Default for current user sessions, Winlogon for Login screen and Disconnect for password protected screensavers, we will not be able to successfully do things like log keystrokes or play with UI interaction.
This is a must watch and may answer a lot of questions you may have esp. if you've had things like the key logger script fail on you in post exploitation!
Please do leave your comments behind! :)
Tags: smfe , metasploit , course , certification , desktops , windows , winsta0 ,
Vivek, another video, that is AWESOME, I hope this video series continue for a long :)
@ringneckparrot Of course, it will :)
These videos and around 20 more is already created and being used by the SMFE students. I am posting them to SecurityTube one at a time, as promised :) stay tuned. There is a lot of fun in store.
Hello Vivek,
When are you uploading all videos??????
I have already watch your Metasploit Mega Primer...
But waiting for more videos of SMFE series.
Nice video again...
Hello sir,
You are doing great job. I am waiting for more SMFE series videos.
In this video you are not showing which payload is used against windows xp sp3.
can you tell me any payload for window 7 (any version), i want to try that.
Great JOB.
@vivek: I looking for them !
@Against_Injustice:I think "Microsoft Windows 7 / Server 2008 R2 SMB Client Infinite Loop"works on win7,and i think "MS10-061" should do smting for u...im not exactly sure.i suggest search on the Armitage to find more cool exploits.It show u the best!
(sorry for my eng mistakes)
:D im back at the game!
As Againt_Injustic says, win 7 / 2008 examples would be awesome. ( I know in India 70 something % of the users are still on XP tho :P )
@Vishaljpatel1987 Most of the videos are already ready and the students of the SMFE course have access to it. We will be posting the videos here at 1 per day for the next 2-3 weeks.
@Against_Injustice I have taken up Windows 7 in the lab exercises which I plan to give to the students of the SMFE course.
@zax, Forseti Yes, these are lab exercises planned for the students of the course. I may try to add the lab exercise videos as well at a later date to this collection. Stay tuned! :)
The next video on Impersonation attacks using Token stealing has been posted:
http://www.securitytube.net/video/2679
Vivek,
Just wanted to leave my thanks in the comment section. I am a security engineer working on increasing my knowledge of backtrack and metaploit. I have earned my A+, Net+ and Sec+ in the last year and I am currently working towards my CASP certification. I must say that these videos have been extremely helpful! I will be taking the SMFE test in another week or two from now. Thanks for the time you put into these videos!