Owning Systems with Core Impact

In the previous section, we illustrated how easy CORE IMPACT is to use and how it ingrates numerous security concepts into the program to ensure maximum impact while mitigating the associated risks involved with injecting backdoors into systems. In this section we are going to see just what CORE IMPACT lets us do with our newly owned victim.

The first thing we want to do is find out more about the victim. So, once again we use the Rapid Penetration Test list to help us quickly determine what is running on the system, any open ports, process list, current users, and more. In our case, our target system was a Windows NT4 box with Service Pack 6 installed.