Can u suggest good exploit for Windows 7, like "ms08_067_netapi " in xp?

Question

hi, i am working on finding a good exploit for windows 7. i am new bee to metasploit but succeded to hack windows xp with "windows/smb/ms08_067_netapi"

 

now trying to do same in windows 7 in LAN.. pls help me on this..

 

 

thanx in advance!!

Answer 1

Hi,

 

I'm not aware of any equivalent of the ms08_067 for Vista and above.

However you should think about what makes this exploit so "special". That's not a silver bullet that does some magic or alike.

The main reason ms08_067 is so popular is because "it works", that is, makes profit of a vulnerability on the RPC subsystem (almost always active and listening to the net) and is very stable (it won't make the target machine inestable).

Try to find instead, an exploit that fits to the specific target you are trying to compromise, answering the following questions:

 

What services/ports can I reach from the net?

Do I have credentials to authenticate?

What is the risk that this exploit would crash the service/DoS the target?

and so on...

 

Remember there's no "automagic" solution for this problem, you have to find the one that best suits your purposes from the choices you have.

 

Good luck and have phun exploiting! :)

Answer 2

There's no magic exploit like the ms08_067_netaspi in Windows 7 or Vista. Even most of the Windows XP SP2 and above have got it patched these days .

What i try to do while pentesting is to look at the services running at the ports and try finding some of the exploits, if available for them.

Also, you could try focussing on Client Level Vuln while pentesting such as vulns in the flash player version, or  adobe pdf reader or anything else your client is running.

Its not the path that matters more, all that matters is finding a way to get in.
 

Good Luck. :)