IT博客汇
  • 首页
  • 精华
  • 技术
  • 设计
  • 资讯
  • 扯淡
  • 权利声明
    • 登录 注册

    Metasploit渗透攻击基础

    青年怪客发表于 2015-09-15 07:49:56
    love 0

    Metasploit这应该算是一个神器了,了解过涉渗的人都应该知道的,关于Metasploit的书箱,在京东,淘宝,以及亚马逊都有购买,在后面的分享内容中,我会分享一些链接,大家可以看看,关于Metasploit的攻击基础,下面将分享以下几个功能。

    首先启动Metasploit 程序

    root@kali:~# msfconsole

    %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
    %%     %%%         %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
    %%  %%  %%%%%%%%   %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
    %%  %  %%%%%%%%   %%%%%%%%%%% http://metasploit.pro %%%%%%%%%%%%%%%%%%%%%%%%%
    %%  %%  %%%%%%   %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
    %%  %%%%%%%%%   %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
    %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
    %%%%%  %%%  %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
    %%%%    %%   %%%%%%%%%%%  %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  %%%  %%%%%
    %%%%  %%  %%  %      %%      %%    %%%%%      %    %%%%  %%   %%%%%%       %%
    %%%%  %%  %%  %  %%% %%%%  %%%%  %%  %%%%  %%%%  %% %%  %% %%% %%  %%%  %%%%%
    %%%%  %%%%%%  %%   %%%%%%   %%%%  %%%  %%%%  %%    %%  %%% %%% %%   %%  %%%%%
    %%%%%%%%%%%% %%%%     %%%%%    %%  %%   %    %%  %%%%  %%%%   %%%   %%%     %
    %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  %%%%%%% %%%%%%%%%%%%%%
    %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%          %%%%%%%%%%%%%%
    %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

    Frustrated with proxy pivoting? Upgrade to layer-2 VPN pivoting with
    Metasploit Pro — learn more on http://rapid7.com/metasploit

    =[ metasploit v4.11.4-2015071402                   ]
    + — –=[ 1476 exploits – 931 auxiliary – 246 post        ]
    + — –=[ 432 payloads – 37 encoders – 8 nops             ]
    + — –=[ Free Metasploit Pro trial: http://r-7.co/trymsp ]

    msf >

    通过上面的启动,可以看到包含,涉渗模块,攻击模块等 ,我就不一一列出了,实在是太长了,以下分享简单的命令

    使用show命令,列出所有模块

    msf > show exploits

    显示涉渗攻击模块,可以进行相应的漏洞 进行相应的涉渗攻击

    msf > show auxiliary

    列出模块的各种参数,以及全局参数,当你不清楚的时候,可以全部列出来

    msf > show options

    Global Options:
    ===============

    Option            Current Setting    Description
    ——            —————    ———–
    ConsoleLogging    false              Log all console input and output
    LogLevel          0                  Verbosity of logs (default 0, max 3)
    MinimumRank       0                  The minimum rank of exploits that will run without explicit confirmation
    Prompt            msf                The prompt string
    PromptChar        >                  The prompt character
    PromptTimeFormat  %Y-%m-%d %H:%M:%S  Format for timestamp escapes in prompts
    SessionLogging    false              Log all input and output for sessions
    TimestampOutput   false              Prefix all console output with a timestamp

    msf >

    显示攻击载荷

    msf > show payloads

    当然更多的命令,可以自行研究,也可以在下面的一起学习与讨论,当前前提条件 ,你可以在你的windows 系统上安装软件,或者使用Kali系统。

     



沪ICP备19023445号-2号
友情链接