Spain
Portugal
Hacking a computer with one phrase
The essence of the vulnerability lies in the partial use of social engineering and inattention of the user. A lot of people, when they look at some guide or manual on the site, copy the text, and stupidly paste it into the command line without even thinking - although it is impossible to do this in principle.
But the PasteZort utility went further. It allows you to spuff the clipboard: a user from the site wants to copy one command
1. We need to select the victim's OS :
2.Select the payload (I chose 1 - tcp):
3. Enter your ip address and port 4444:
3. Enter your ip address and port 4444:
Now we need to generate a payload , after generating it , we need to enter two words or one in which this payload will be encrypted :
After that, Metasploit will open for us, and when the payload is activated, a session will open) And then do whatever you want )
That's all, now we have launched the Apache server where our phrase is located. How to use it? I'll give you an example: The source code of a site is taken and downloaded, for example, using wget, then we take copy the phrase and paste it into any place on the site, then we launch the site through ngrok, for example, and throw it to the victim.
