Target Server: Windows XP in English
Penetration Testing machine: KaLi
Preface:
MS08-067 vulnerability affects all Windows systems except 2008 Core Windows Server, including: 2003 / Vista / all versions of Windows 2000 / XP / Server Server 2008, and even includes the testing phase of Windows 7Pro-Beta.
In this experiment the target server system
1, view the target and local IP, if real, then we need to scan Oh, here we have the direct use of.
2, start MSFConsole, search and use MS06_067 module
3, the corresponding configuration parameters, and running the target drone address configuration, and then run or exploit
4, hashdump get xp user hash value, and then use the built-kali password cracking tool ophcrack
Ophcrack use tools to crack, crack the password is 123456
5, open the target in just meterpreter in Remote Desktop Services
6, the target for Remote Desktop Connection
7, the end of penetration testing
Reading and fitness there is always a way