Scribd
Upload
1K views6 pages

Metasploit Meterpreter Webcam - List Webcam - Snap Record - Mic - Eric Romang Blog

This document describes several Metasploit Meterpreter commands for controlling webcams and recording audio on infected Windows systems: 1) The webcam_list command lists available webcams by index number. 2) The webcam_snap command takes a snapshot from the specified webcam and saves it as a JPEG file. 3) The record_mic command records audio from the default microphone for a set number of seconds and saves it as a WAV file. 4) The run webcam command launches a script that periodically captures webcam snapshots and saves them to a folder, refreshing an HTML file with the new images.

Uploaded by

Filipi Souza
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
Download as pdf or txt
1K views6 pages

Metasploit Meterpreter Webcam - List Webcam - Snap Record - Mic - Eric Romang Blog

This document describes several Metasploit Meterpreter commands for controlling webcams and recording audio on infected Windows systems: 1) The webcam_list command lists available webcams by index number. 2) The webcam_snap command takes a snapshot from the specified webcam and saves it as a JPEG file. 3) The record_mic command records audio from the default microphone for a set number of seconds and saves it as a WAV file. 4) The run webcam command launches a script that periodically captures webcam snapshots and saves them to a folder, refreshing an HTML file with the new images.

Uploaded by

Filipi Souza
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
Download as pdf or txt
Download as pdf or txt
You are on page 1/ 6

7/3/2017 Metasploit Meterpreter webcam_list webcam_snap record_mic Eric Romang Blog

ERICROMANGBLOG aka wow on ZATAZ.com

Home

CVE-2010-3867 : You wanna play with MS10-092 : Microsoft Windows Task


ProFTPD ? Scheduler Privilege Escalation FOLLOW ME!

Metasploit Meterpreter
webcam_list webcam_snap
record_mic
Metasploit provide some commands to extend the usage of meterpreter. We will
describe here under the usage of webcam, webcam_list, webcam_snap and
record_mic.
First of all you require a valid meterpreter session on a Windows box to use these
extensions.

webcam_list :

This stdapi command provide you a list of all webcams on the target system. Each
webcam will have an index number.

Metasploit stdapi webcam_list

webcam_snap : TAGS
This stdapi command take a snapshot for the specified webcam, by default number
1 and will try without argument precision to open the saved snapshot.
Adobe Adobe Flash

Adobe Flash 0day Apple


APT ArcSight Botnet
CFR China CVE-2012-4792
Metasploit stdapi webcam_snap default Database Exploit Kit

webcam_snap could have arguments :


Firefox Flash Flash 0day

-h : to display the help banner. Internet


IE 0Day

-i : The index number of the webcam to use. Explorer Internet


-p : The JPEG image file path. By default $HOME/[randomname].jpeg Explorer 0day Java
http://eromang.zataz.com/2010/11/29/metasploit-meterpreter-webcam_list-webcam_snap-record_mic/ Java SE 7 1/6
7/3/2017 Metasploit Meterpreter webcam_list webcam_snap record_mic Eric Romang Blog

-q : The JPEG image quality, by default 50. Java SE 6 Java SE 7 Kernel


-v :Automaticallyview the JPEG image, by default true. Linux Logger

Microsoft
Mozilla MSA-2755801
Oracle PDF Reader
RFI Scanner SmartConnector
Metasploit stdapi webcam_snap extended
SQL injection SSH

record_mic Windows
This stdapi command record audio, by default 1 second, from the default
microphone and will try without argument precision to play the captured audio wav RECENT POSTS: ERIC
file. ROMANG BLOG

CVE-2016-3116 Dropbear SSH


forced-command and security
bypass
Metasploit stdapi record_mic basic CVE-2016-3115 OpenSSH forced-
command and security bypass
record_mic could have arguments :
CVE-2015-1701 Windows
-h : to display the help banner. ClientCopyImage Win32k Exploit

-d : Number of seconds to record, by default 1 second (useless). CVE-2015-3105 Adobe Flash Player
Drawing Fill Shader Memory
-f : The wav file path. By default $HOME/[randomname].wav Corruption

-p : Automatically play the captured audio, by default true. CVE-2015-3306 ProFTPD 1.3.5
Mod_Copy Command Execution

Metasploit stdapi record_mic advanced

(bg)run webcam

Same as the stdapi webcam_snap command, but with loop delay interval to refresh
the displayed jpeg snap. A refreshed HTML file, webcam.htm,will provide you
each x milliseconds a new snapshot. You can invoke the webcam script with run or
bgrun meterpreter command.

The possible arguments to begin a recording are :

-h : to display the help banner.

-d : Loop delay interval in milliseconds, by default 1000.

-f : Just grab a single frame.

-g : Send to the GUI instead of writing file. TOP POSTS


-i : The index of the webcam to use, by default 1.
Metasploit Meterpreter
-l : Keep capturing in a loop, by default (useless).
webcam_list webcam_snap
http://eromang.zataz.com/2010/11/29/metasploit-meterpreter-webcam_list-webcam_snap-record_mic/ 2/6
7/3/2017 Metasploit Meterpreter webcam_list webcam_snap record_mic Eric Romang Blog

-p : The path to the folder images will be saved in, by default current working record_mic
directory. ArcSight Logger and
SmartConnectors Questions
-q : The JPEG quality, by default 50.
and Answers
ArcSight SmartConnector
Configuration User Guide -
Part 1
Metasploit Meterpreter run webcam ruby script ArcSight SmartConnector
commands and features
To stop the webcam recording, just type the following command : Why and howto calculate your
Events Per Second
CVE-2016-3116 Dropbear SSH
Metasploit Meterpreter stop webcam ruby forced-command and security
script bypass
MS16-007 CVE-2016-0019
Share this:
Windows RDP Security Bypass


Comment crer un
More diagramme RACI
Fraudulent TURKTRUST Digital
Certificat Used In Active
Attacks
Related ArcSight SmartConnectors
Disk Size and Memory
Requirements

SUBSCRIBE TO BLOG
Metasploit Meterpreter Built in John the Ripper Metasploit PostgreSQL VIA EMAIL
screenshot screenspy (jtr_crack_fast) into Auxiliary Modules
screengrab Metasploit In "Metasploit"
In "Metasploit" In "Metasploit" Enter your email address to
subscribe to this blog and receive
notifications of new posts by
stdapi email.

Email Address

Subscribe

Comments (1)

Comments are closed

#1 written by osman 5 YEARS AGO

Nice Toturials and nice commands

Comment Feed for this Post


http://eromang.zataz.com/2010/11/29/metasploit-meterpreter-webcam_list-webcam_snap-record_mic/ 3/6
7/3/2017 Comment
Metasploit Meterpreter webcam_list Feed for this
webcam_snap Post Eric Romang Blog
record_mic

BLOGROLL

Hack.lu

Metasploit

ZATAZ.com

MALWARE SOURCES

Clean MX

KernelMode.info

Malc0de

Malekal

Malshare API

Malware Domain List

malware.lu

Malwarebytes

NovCon Minotaur

SafeGroup

SCUMWARE

Team Cymru SHA1/MD5 MHR


Lookup
http://eromang.zataz.com/2010/11/29/metasploit-meterpreter-webcam_list-webcam_snap-record_mic/ 4/6
7/3/2017 Metasploit Meterpreter webcam_list webcam_snap record_mic Eric Romang Blog

ThreatMiner

ViCheck.ca - Malware Hash


Query

ViCheck.ca - Malware
Sandbox Search

VX Vault

ZeuS Tracker

ONLINE SANDBOX

#totalhash

Anubis

Comodo

Joe Sandbox Cloud

JSUNPACK

malware tracker

Malwr

Payload Security

ThreatExpert

urlQuery

ViCheck.ca

Wepawet

ONLINE TOOLS

Code Difference Comparison


Tool

TRANSLATOR, BINARY

http://eromang.zataz.com/2010/11/29/metasploit-meterpreter-webcam_list-webcam_snap-record_mic/ 5/6
7/3/2017 Metasploit Meterpreter webcam_list webcam_snap record_mic Eric Romang Blog

Search Website

FOLLOW ME !

View eromangs profile


on Twitter
View ericromangs
profile on LinkedIn
View wowzatazs profile
on YouTube
View wowzatazs profile
on Google+

GPG KEY

My GPG Key
GPG Fingerprint : 3D1A 1E96
E2D5 A682 2B96 5FD4 C5AD
A314 598A 9346

The content of this website is released under Creative Commons CC BY-NC-SA 3.0 license | RSS Feeds

http://eromang.zataz.com/2010/11/29/metasploit-meterpreter-webcam_list-webcam_snap-record_mic/ 6/6

You might also like