![]() ![]() This video is just a demonstration and Special Thanx to Max for acting as the victim and helping me making this video in real world. Making it FUD and undetectable is up to you. Now you can use that at any time because of DNS, it will be little similar to RATs. Once the victim opens the backdoor it back connects through the DNS to our IP successfully. Set LPORT to your forwarded port number and exploit. Set the LHOST to your internal IP which BT has been assigned. Now launch metasploit and use the multi/handler exploit which handles exploits outside the network. Those are things new we should modify in making our backdoor the rest are normal. Set the LPORT to your forwarded port for the BT machine. Set the LHOST to your no-ip domain, mine is (). Victim’s internal IP-> Victim’s external IP-> Attacker’s DNS->Attacker’s external IP-> Attacker’s Internal IP As the DUC client sends our External IP and updates our no-ip domain DNS is acting static. This address should be resolvable from your host, if its not resolvable from another host in your network this is due firewall restrictions. Run a container and ping 172.17.0.2, you should get a response. How to tell if DUC40. Click the program, and then click Uninstall. Now locate No-IP DUC or DUC40 in the list of displayed applications. So here we use the payload as windows/meterpreter/reverse_tcp_dns in making our backdoor. Now a container is going to get next assignable IP address from that subnet which is going to be 172.17.0.2. You find it in the lower left corner of the taskbar. Use a bridged connection in Network settings because we are going to add our BT machine to our internal IP Range. This is helpful for users wanting to run a Web/FTP server on their home computer. ![]() This client keeps your IP address in sync with a specific DNS host name, provided by. ![]() No-IP Updater is used with s free DNS service. To create an account with No-IP simply click the Sign Up link at the top of the page. Next make sure you port forward you router to a new internal IP. No-IP DUC (Dynamic DNS Update Client) 4.1.1. Using Remote Desktop with No-IP Step 1: Create an account. With DFMirage, TightVNC Server can detect screen updates and grab pixel data in a very efficient way. DFMirage mirror display driver allows TightVNC to gain the best performance under Windows. First of all create an account on No-IP and configure your DUC client correctly. On windows OS, after installed docker, there is an entry added by docker inside your hosts file (C:WindowsSystem32driversetchosts), which states the IP as: Added by Docker Desktop 10.xx.xx. The process known as DUC40 belongs to software No-IP DUC lu (further information) DUC40: DFMirage Driver. For that we can use a free domain name server such as No-IP. Victim’s internal IP->Victim’s external IP-> Attacker’s external IP-> Attacker’s Internal IPīut most of the time the Attacker’s External IP is Dynamic and changes. You will need to register for a free account, and either update your IP address via their web interface or download their Windows client' and is a popular Dynamic DNS service in the network & admin category. So a normal reverse_tcp connects like this. No-IP is described as 'allows you to create up to 3 free Dynamics DNS hosts for private use. We use a DNS because our external IP changes every time. ![]()
0 Comments
Leave a Reply. |