Hello friends i am back again to backtrack tutorial this time its about powning the victim pc using social engineering tool kit in lets starts its pretty easy .

The Social-Engineer Toolkit (SET) is specifically designed to perform advanced attacks against the human element.Less theory lets focus on attack.

Things Needed

  • Backtrack 5
  • Windows XP Machine (Target)

    Open Your Backtrack terminal and Type cd /pentest/exploits/set

    Now Open Social Engineering Toolkit (SET) ./set

    You will see something like this.
    Now we have to choose Option
  • 1) Social Engineering attack so type 1.
  • then choose 2, “Website Attack Vectors”.
  • after that we have to choose 2 “The Metasploit Browser Exploit Method” because we will attack via victim browser.
  • Now choose 1, “Web Templates” to have SET create a generic webpage to use.
  • Now choose 2 In this tutorial I will use Gmail, but if you think Facebook or Twitter or Google more better because it’s the most accessed website, just change into what do you want.
  • Now choose 39 “Metasploit Browser Autopwn” to load all vulnerability Social Engineering Toolkit known. These tools will launch all exploit in Social Engineering Toolkit database.
  • Then choose 2 “Windows Reverse_TCP Meterpreter”, but you have several to choose from including your own program.
  • Connect back port to attacker computer. In this example I use port 1234, but you can change to 1456, 4521, etc
  • OK finally you have created the backdoor program, encodes and packs. It creates the website that you want to use and starts up a listening service looking for people to connect. When done, your screen will look like this:
  • When the link given to user(via Any social Media), the victim will see looks-a-like Gmail (fake website). When the page loads it also load all malicious script to attack victim computer.
    And There You hav powned the victim pc.
    Now you can do what ever you wish to do using some commands (like screen grabbing,webcam run etc)

    I hope YOu must have enjoyed this tutorial if you wants more such tutorial do comments :) thank you
  • Post a Comment

    Feel Free To Ask Your Query we Love To Answer