Knowledge Base

Ask A Question

Questions

2

La console reste en mode console

Je viens d'installer Rapid7 Security console de Nexpose sur un serveur sous Windows Server 2012 R2, quand je lance la console depuis le lien https://localhost:3780 et je me logue je reçois le message suivant (VM has reported the following error:Critical error during initialization: null). Durant l'instalation un fichier nommé error est généré sur le bureau du VM, ci-dessous son contenu. In action "nexserv.ico [Run script]" (screen "CustomInstallationScreen"), property "Script": java.io.FileNotFoundException: C:\Program Files\rapid7\nexpose\nsc\nexserv.ico (Accès refusé) at java.io.FileOutputStream.open0(Native Method) at java.io.FileOutputStream.open(FileOutputStream.java:270) at java.io.FileOutputStream.<init>(FileOutputStream.java:213) at java.io.FileOutputStream.<init>(FileOutputStream.java:162) at com.exe4j.runtime.util.FileUtil.copyFile(FileUtil.java:20) at com.install4j.script.I4jScript_Internal_157.eval(I4jScript_Internal_157.java:6) at com.install4j.script.I4jScript_Internal_157.evaluate(I4jScript_Internal_157.java:*29) at com.install4j.runtime.installer.helper.Script.evaluate(Script.java:33) at com.install4j.runtime.installer.ContextImpl.runScript(ContextImpl.java:188) at com.install4j.runtime.installer.ContextImpl.runScript(ContextImpl.java:182) at com.install4j.runtime.beans.actions.control.RunScriptAction.execute(RunScriptAction.java:34) at com.install4j.runtime.beans.actions.SystemInstallOrUninstallAction.install(SystemInstallOrUninstallAction.java:29) at com.install4j.runtime.installer.ContextImpl$7.executeAction(ContextImpl.java:1668) at com.install4j.runtime.installer.ContextImpl$7.fetchValue(ContextImpl.java:1659) at com.install4j.runtime.installer.ContextImpl$7.fetchValue(ContextImpl.java:1656) at com.install4j.runtime.installer.helper.comm.actions.FetchObjectAction.execute(FetchObjectAction.java:14) at com.install4j.runtime.installer.helper.comm.HelperCommunication.executeActionDirect(HelperCommunication.java:274) at com.install4j.runtime.installer.helper.comm.HelperCommunication.executeActionInt(HelperCommunication.java:249) at com.install4j.runtime.installer.helper.comm.HelperCommunication.executeActionChecked(HelperCommunication.java:187) at com.install4j.runtime.installer.helper.comm.HelperCommunication.fetchObjectChecked(HelperCommunication.java:170) at com.install4j.runtime.installer.ContextImpl.performActionIntStatic(ContextImpl.java:1656) at com.install4j.runtime.installer.InstallerContextImpl.performActionInt(InstallerContextImpl.java:151) at com.install4j.runtime.installer.ContextImpl.performAction(ContextImpl.java:1103) at com.install4j.runtime.installer.controller.Controller.executeAction(Controller.java:368) at com.install4j.runtime.installer.controller.Controller.executeActions(Controller.java:334) at com.install4j.runtime.installer.controller.Controller.executeActionGroup(Controller.java:405) at com.install4j.runtime.installer.controller.Controller.executeActions(Controller.java:339) at com.install4j.runtime.installer.controller.Controller.handleCommand(Controller.java:195) at com.install4j.runtime.installer.controller.Controller.start(Controller.java:94) at com.install4j.runtime.installer.Installer.runInProcess(Installer.java:59) at com.install4j.runtime.installer.Installer.main(Installer.java:46) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:498) at com.exe4j.runtime.LauncherEngine.launch(LauncherEngine.java:65) at com.exe4j.runtime.WinLauncher.main(WinLauncher.java:101) at com.install4j.runtime.launcher.WinLauncher.main(WinLauncher.java:26)

Posted by Walid Daidai about a year ago

0

Reverse shell over WAN

Hey all, I've been playing around with the reverse http payloads on my Kali machine. Now inside the LAN I've configured them all good, everything's very simple. However when configuring the payload to work over WAN, I've configured as following : On the payload itself : Lhost - Public IP (The WAN leg of my router) Lport - My external port On the handler itself : Lhost - Private IP (The IP of the kali machine at the router's internal LAN interface 10.0.0.0/24 range) Lport - Same as my external port, though it makes no difference since I'm using port forwarding and can set it to whatever I like. On the router I've configured forwarding from the external port to the handler's IP and port configured. I've done port forwarding to another server in my LAN, and it works great for the past few months. If I use the reverse shell on a workstation inside the LAN (For example 10.0.1.15), even though the payload sends the shell to the router WAN leg (72.x.x.x) it still reaches the handler (10.0.0.200) However when attempting to do so from outside the LAN, nothing happens. For testing purposes I've put up an apache service on the kali machine, set it up and made it accessible from the LAN. Set up port forwarding to it, and tested accessing it from the public IP. When I've tried from the LAN, it worked. But when attempting to access it from the WAN, the browser says the response took too long, behaving like the packet got dropped from a firewall. This behavior sounds more related to the specific Kali machine I'm using, however I've disabled it's firewall (Which it didn't have to begin with, downloaded ufw and then disabled it lol). TL;DR My Kali machine responds to requests sent to the WAN IP if being requested from a LAN station, but does not respond to requests sent to the WAN IP from a WAN station. Will appreciate any attempt to help!

Posted by Yigal van Dongen about a year ago