WAZZUP GUYS! Today a really cool tutorial. I'm going to show you how to install really powerfull tools and turn your I-Device into a real hacking machine.
A few weeks ago I've posted a tutorial how to install SQLMap on your I-Device
( http://ddosdipdye.weebly.com/blog/how-to-install-any-python-pentest-tool-on-your-i-device )
The tutorial of today makes your 'I-Hacking arsenal' complete.
The tools of today are NMap SET and Metasploit.
Metasploit
The first tool is the Metasploit Framework.
A few weeks ago I've posted a tutorial how to install SQLMap on your I-Device
( http://ddosdipdye.weebly.com/blog/how-to-install-any-python-pentest-tool-on-your-i-device )
The tutorial of today makes your 'I-Hacking arsenal' complete.
The tools of today are NMap SET and Metasploit.
Metasploit
The first tool is the Metasploit Framework.
Metaspoit Framework is a open source penetration tool used for developing and executing exploit code against a remote target machine it, Metasploit frame work has the world’s largest database of public, tested exploits. In simple words, Metasploit can be used to test the Vulnerability of computer systems in order to protect them and on the other hand it can also be used to break into remote systems.
Before I give you the commands you need to install a few tools and becouse the Injas repo is down we have to install it manually(1):
apt-get update
apt-get dist-upgrade
apt-get install adv-cmds apt basic-cmds bootstrap-cmds bzip2 class-dump coreutils developer-cmds diskdev-cmds file-cmds gawk gdb git gzip iokittools less make nano network-cmds openssh rsync shell-cmds system-cmds com.ericasadun.utilities top uikittools findutils inetutils diffutils lsof subversion vim xar tar patch unrar unzip wget whois xml2 zip p7zip nmap python -y
apt-get remove –purge ruby
wget http://apt.saurik.com/cydia/debs/ruby_1.8.6-p111-5_iphoneos-arm.deb
dpkg -i ruby_1.8.6-p111-5_iphoneos-arm.deb
wget http://apt.saurik.com/cydia/debs/rubygems_1.2.0-3_iphoneos-arm.deb
dpkg -i rubygems_1.2.0-3_iphoneos-arm.deb
Okay now we have all ruby things installed we're going to install the real metasploit package:
wget http://downloads.metasploit.com/data/releases/archive/framework-4.2.0.tar.bz2
tar -xvf framework-4.2.0.tar.bz2
cd /msf
Ruby(Gems)(2 & 3)
When you open up cydia, cydia will say that you have to update ruby(gems). DON'T DO IT!
MSFConsole
When you run the msfconsole file with the command ./msfconsole you will get an error. You can fix this with this command:
mv modules/auxiliary/bnat/bnat_router.rb modules/auxiliary/bnat/bnat_router.rb.bak
Then run is again by using ./msfconsole
SEToolkit
The 2nd tool is SET, SET is short for The Social Engeneering Toolkit...
- APT
- Wget
- Cydia
- Terminal
- Git
- Python
- ruby
apt-get update
apt-get dist-upgrade
apt-get install adv-cmds apt basic-cmds bootstrap-cmds bzip2 class-dump coreutils developer-cmds diskdev-cmds file-cmds gawk gdb git gzip iokittools less make nano network-cmds openssh rsync shell-cmds system-cmds com.ericasadun.utilities top uikittools findutils inetutils diffutils lsof subversion vim xar tar patch unrar unzip wget whois xml2 zip p7zip nmap python -y
apt-get remove –purge ruby
wget http://apt.saurik.com/cydia/debs/ruby_1.8.6-p111-5_iphoneos-arm.deb
dpkg -i ruby_1.8.6-p111-5_iphoneos-arm.deb
wget http://apt.saurik.com/cydia/debs/rubygems_1.2.0-3_iphoneos-arm.deb
dpkg -i rubygems_1.2.0-3_iphoneos-arm.deb
Okay now we have all ruby things installed we're going to install the real metasploit package:
wget http://downloads.metasploit.com/data/releases/archive/framework-4.2.0.tar.bz2
tar -xvf framework-4.2.0.tar.bz2
cd /msf
Ruby(Gems)(2 & 3)
When you open up cydia, cydia will say that you have to update ruby(gems). DON'T DO IT!
MSFConsole
When you run the msfconsole file with the command ./msfconsole you will get an error. You can fix this with this command:
mv modules/auxiliary/bnat/bnat_router.rb modules/auxiliary/bnat/bnat_router.rb.bak
Then run is again by using ./msfconsole
SEToolkit
The 2nd tool is SET, SET is short for The Social Engeneering Toolkit...
The Social-Engineer Toolkit (SET) was created and written by the founder of TrustedSec. It is an open-source Python-driven tool aimed at penetration testing around Social-Engineering. SET has been presented at large-scale conferences including Blackhat, DerbyCon, Defcon, and ShmooCon. With over two million downloads, SET is the standard for social-engineering penetration tests and supported heavily within the security community. The Social-Engineer Toolkit has over 2 million downloads and is aimed at leveraging advanced technological attacks in a social-engineering type environment. TrustedSec believes that social-engineering is one of the hardest attacks to protect against and now one of the most prevalent.
One of the greatest things about SET is that there is a great metasploit intergration, SET and Metasploit are best friends.
First of all go to cydia and download:
https://github.com/trustedsec/social-engineer-toolkit/archive/master.zip
The alternative way to do this is to git clone it. Do his by using the command:
git clone https://github.com/trustedsec/social-engineer-toolkit/ set/
Move to the folder SET is located in with the command:
cd /social-engineer-toolkit
Don't run the setup.py(6) file. Run the real SET file by execute:
chmod +x setoolkit
./setoolkit
Amazing, now NMAP
NMAP
The next tool is short for Network Mapper
First of all go to cydia and download:
- Python(4)
- Git (optional)(5)
https://github.com/trustedsec/social-engineer-toolkit/archive/master.zip
The alternative way to do this is to git clone it. Do his by using the command:
git clone https://github.com/trustedsec/social-engineer-toolkit/ set/
Move to the folder SET is located in with the command:
cd /social-engineer-toolkit
Don't run the setup.py(6) file. Run the real SET file by execute:
chmod +x setoolkit
./setoolkit
Amazing, now NMAP
NMAP
The next tool is short for Network Mapper
Nmap (Network Mapper) is a security scanner originally written by Gordon Lyon (also known by his pseudonym Fyodor Vaskovich)[1] used to discover hosts and services on a computer network, thus creating a "map" of the network. To accomplish its goal, Nmap sends specially crafted packets to the target host and then analyzes the responses.
The software provides a number of features for probing computer networks, including host discovery and service and operating system detection. These features are extensible by scripts that provide more advanced service detection,[2] vulnerability detection,[2] and other features. Nmap is also capable of adapting to network conditions including latency and congestion during a scan. Nmap is under development and refinement by its user community.
Nmap was originally a Linux-only utility,[3] but it was ported to Microsoft Windows, Solaris, HP-UX, BSD variants (including Mac OS X), AmigaOS, and SGI IRIX.[4] Linux is the most popular platform, followed closely by Windows.[5]
The only tool we need for this is APT (short for advanced packaging tool)
The Advanced Package Tool, or APT, is a free software user interface that works with core libraries to handle the installation and removal of software on the Debian GNU/Linux distribution and its variants.[3] APT simplifies the process of managing software on Unix-like computer systems by automating the retrieval, configuration and installation of software packages, either from precompiled files or by compiling source code.[3]
APT was originally designed as a front-end for dpkg to work with Debian's .deb packages, but it has since been modified to also work with the RPM Package Manager system via APT-RPM.[4] The Fink project has ported APT to Mac OS X for some of its own package management tasks,[5] and APT is also available in OpenSolaris.
Install it with the command apt-get install nmap. Press Y or yes and the package will install...(7)
As I told you I've already posted a few tutorials about IOS hacking and I'm sure that those tools in combination with this tools are a really powerfull combination:
Links
TOR on IOS
http://ddosdipdye.weebly.com/blog/tor-on-ios
SQLMAP on IOS
http://ddosdipdye.weebly.com/blog/how-to-install-any-python-pentest-tool-on-your-i-device
That was it for today Guys,
THX for reading,
and Happy I-Hunting
@ClaimItToYou
As I told you I've already posted a few tutorials about IOS hacking and I'm sure that those tools in combination with this tools are a really powerfull combination:
Links
TOR on IOS
http://ddosdipdye.weebly.com/blog/tor-on-ios
SQLMAP on IOS
http://ddosdipdye.weebly.com/blog/how-to-install-any-python-pentest-tool-on-your-i-device
That was it for today Guys,
THX for reading,
and Happy I-Hunting
@ClaimItToYou