6000 - X11
The X Window System (X11, or simply X) is a windowing system for bitmap displays, common on Unix-like operating systems. X provides the basic framework for a GUI environment.
Nmap
Script:
Host script results:
Sensepost created the following nmap script
https://github.com/sensepost/x11-active-displays
Usage
Output
Metasploit
X11 No-Auth Scanner - Module scans for X11 servers that allow anyone to connect without authentication.
Connect to X11 server
Xorg:
Using X:
To exit press 'ctrl+alt+enter'
To enable XDMCP in Remmina run the following:
Taking screenshot
xwd
XWD It is an X Window System utility that helps in taking screenshots. On our Kali System, we will use the xwd to take the screenshot of Xserver. This utility takes the screenshots in xwd format.
To take a screenshot run:
Here we have the screenshot captured by the xwd, but it is in .xwd format, so to view it we will have to convert it to a viewable format like .png
Note: You may need to install imagemagick
to convert to png, convert
is not pre installed on kali
On opening the png file we can see that the xwd tool has successfully captured the screenshot of the target system.
xrdp
Gaining remote shell
we will use the X11 Keyboard Command Injection module of the Metasploit Framework. This module exploits open X11 Server by connecting and registering a virtual keyboard. Then the Virtual Keyboard is used to open an xterm or gnome-terminal and then type and execute the payload.
Last updated