Metasploit渗透测试框架简介
2024-05-12 19:04:14
Metasploit渗透测试框架介绍
Metasploit是一个免费的、可下载的框架,通过它可以很容易地获取、开发并对计算机软件漏洞实施攻击。它本身附带数百个已知软件漏洞的专业级漏洞攻击工具。当H.D. Moore在2003年发布Metasploit时,计算机安全状况也被永久性地改变了。仿佛一夜之间,任何人都可以成为黑客,每个人都可以使用攻击工具来攻击那些未打过补丁或者刚刚打过补丁的漏洞。软件厂商再也不能推迟发布针对已公布漏洞的补丁了,这是因为Metasploit团队一直都在努力开发各种攻击工具,并将它们贡献给所有Metasploit用户。
这个框架最大的特点就是简单,易上手任何人只要学习过就能使用,但是有很大的局限性,高级渗透测试人员不建议使用。
启动方法:msfconsole
| 参数 | 解析 |
|---|---|
| ? | 显示帮助菜单 |
| back | 从当前环境返回到主路径 |
| banner | 显示软件旗标信息 |
| cd | 改变当前工作路径 |
| color | 切换颜色 |
| connect | 连接主机,类似于telnet和nc |
| exit | 退出 |
| help | 显示帮助菜单,即该页面 |
| info | 显示模块的详细信息 |
| irb | 进入irb脚本模式 |
| jobs | 显示和管理作业 |
| kill | 结束一个作业 |
| load | 加载framework插件 |
| loadpath | 从指定路径加载模块 |
| quit | 退出 |
| resource | 运行文件中的命令 |
| route | 路由转发 |
| save | 保持数据 |
| search | 搜索模块及名称 |
| sessions | 显示及转存会话列表 |
| set | 设置变量值 |
| setg | 设置全局变量值 |
| show | 显示给定类型的模块或全部模块 |
| sleep | 休眠 |
| unload | 卸载 framework 插件 |
| unset | 取消变量设置 |
| unsetg | 取消全局变量设置 |
| use | 根据名字选择一个模块 |
| version | 显示版本 |
kali里文件所在目录
cd /usr/share/metasploit-framework
| 目录名 | 作用 |
|---|---|
| modules | 实际的MSF模块 |
| scripts | meterpreter和其他脚本 |
| plugins | 扩展插件目录 |
| tools | 工具目录 |
meterpreter 平台命令(渗透测试成功后使用)
Core Commands
Command Description
------- -----------
? Help menu
background Backgrounds the current session
bg Alias for background
bgkill Kills a background meterpreter script
bglist Lists running background scripts
bgrun Executes a meterpreter script as a background thread
channel Displays information or control active channels
close Closes a channel
disable_unicode_encoding Disables encoding of unicode strings
enable_unicode_encoding Enables encoding of unicode strings
exit Terminate the meterpreter session
get_timeouts Get the current session timeout values
guid Get the session GUID
help Help menu
info Displays information about a Post module
irb Open an interactive Ruby shell on the current session
load Load one or more meterpreter extensions
machine_id Get the MSF ID of the machine attached to the session
migrate Migrate the server to another process
pivot Manage pivot listeners
pry Open the Pry debugger on the current session
quit Terminate the meterpreter session
read Reads data from a channel
resource Run the commands stored in a file
run Executes a meterpreter script or Post module
secure (Re)Negotiate TLV packet encryption on the session
sessions Quickly switch to another session
set_timeouts Set the current session timeout values
sleep Force Meterpreter to go quiet, then re-establish session.
transport Change the current transport mechanism
use Deprecated alias for "load"
uuid Get the UUID for the current session
write Writes data to a channel
Stdapi: File system Commands
Command Description
------- -----------
cat Read the contents of a file to the screen
cd Change directory
checksum Retrieve the checksum of a file
cp Copy source to destination
del Delete the specified file
dir List files (alias for ls)
download Download a file or directory
edit Edit a file
getlwd Print local working directory
getwd Print working directory
lcd Change local working directory
lls List local files
lpwd Print local working directory
ls List files
mkdir Make directory
mv Move source to destination
pwd Print working directory
rm Delete the specified file
rmdir Remove directory
search Search for files
show_mount List all mount points/logical drives
upload Upload a file or directory
Stdapi: Networking Commands
Command Description
------- -----------
arp Display the host ARP cache
getproxy Display the current proxy configuration
ifconfig Display interfaces
ipconfig Display interfaces
netstat Display the network connections
portfwd Forward a local port to a remote service
resolve Resolve a set of host names on the target
route View and modify the routing table
Stdapi: System Commands
Command Description
------- -----------
clearev Clear the event log
drop_token Relinquishes any active impersonation token.
execute Execute a command
getenv Get one or more environment variable values
getpid Get the current process identifier
getprivs Attempt to enable all privileges available to the current process
getsid Get the SID of the user that the server is running as
getuid Get the user that the server is running as
kill Terminate a process
localtime Displays the target system local date and time
pgrep Filter processes by name
pkill Terminate processes by name
ps List running processes
reboot Reboots the remote computer
reg Modify and interact with the remote registry
rev2self Calls RevertToSelf() on the remote machine
shell Drop into a system command shell
shutdown Shuts down the remote computer
steal_token Attempts to steal an impersonation token from the target process
suspend Suspends or resumes a list of processes
sysinfo Gets information about the remote system, such as OS
Stdapi: User interface Commands
Command Description
------- -----------
enumdesktops List all accessible desktops and window stations
getdesktop Get the current meterpreter desktop
idletime Returns the number of seconds the remote user has been idle
keyboard_send Send keystrokes
keyevent Send key events
keyscan_dump Dump the keystroke buffer
keyscan_start Start capturing keystrokes
keyscan_stop Stop capturing keystrokes
mouse Send mouse events
screenshare Watch the remote user desktop in real time
screenshot Grab a screenshot of the interactive desktop
setdesktop Change the meterpreters current desktop
uictl Control some of the user interface components
Stdapi: Webcam Commands
Command Description
------- -----------
record_mic Record audio from the default microphone for X seconds
webcam_chat Start a video chat
webcam_list List webcams
webcam_snap Take a snapshot from the specified webcam
webcam_stream Play a video stream from the specified webcam
Stdapi: Audio Output Commands
Command Description
------- -----------
play play a waveform audio file (.wav) on the target system
Priv: Elevate Commands
Command Description
------- -----------
getsystem Attempt to elevate your privilege to that of local system.
Priv: Password database Commands
Command Description
------- -----------
hashdump Dumps the contents of the SAM database
Priv: Timestomp Commands
Command Description
------- -----------
timestomp Manipulate file MACE attributes
Metasploit渗透测试框架简介相关推荐
- Metasploit渗透测试框架
Metasploit渗透测试框架 渗透测试是一类有目的性的.针对目标机构计算机系统安全的监测评估方法.渗透测试可以发现系统的漏洞和安全机制方面的隐患,并以此进行渗透攻击来取得目标计算机的控制权.通过渗 ...
- Metasploit 渗透测试框架的基本使用(扩展:利用永恒之蓝漏洞攻击WIN7靶机)
1.Metasploit 渗透测试框架介绍 1.基础库:metasploit 基础库文件位于源码根目录路径下的 libraries 目录中,包括Rex,framework-core 和 framewo ...
- Metasploit渗透测试框架基础
Metasploit 简介: Metaspolit是一个渗透测试框架,属于框架,是模块化组成的,是一个免费的可下的框架,通过它可以很容易的获取.开发并对计算机软件漏洞实现 metaspliot时候,计 ...
- Metasploit(MSF)渗透测试框架使用教程及基本命令
第一章 Metasploit渗透框架介绍及体系框架 1.1 Metasploit 渗透测试框架介绍 Metasploit 是一个渗透测试工具,也是信息安全与渗透测试领域最大的开源项目之一.使您能够 ...
- metasploit 一款开源的渗透测试框架
渗透神器漏洞利用框架metasploit from: https://zhuanlan.zhihu.com/p/30743401 metasploit是一款开源的渗透测试框架软件也是一个逐步发展与成熟 ...
- MSF(Metasploit)渗透测试---黑客工具使用指南
Metasploit 简介 Metasploit 框架 渗透测试者的困扰:在众多相同类型的工具,丌知道如何选择.认为需要掌插数百个工具软件,上千个命令参数,实在记丌住.新出现的漏洞 POC/EXP 有 ...
- TrackRay:打造一款自己的渗透测试框架
rackRay简介 溯光,英文名"TrackRay",意为逆光而行,追溯光源.同时致敬安全圈前辈开发的"溯雪","流光". 溯光是一个开源的 ...
- metasploit渗透测试指南_Metasploit渗透测试环境搭建与使用
一.背景介绍Metasploit就是一个漏洞框架.它的全称叫做The Metasploit Framework,简称叫做MSF.Metasploit作为全球最受欢迎的工具,不仅仅是因为它的方便性和强大 ...
- 溯光 (TrackRay) 渗透测试框架
1.关于溯光 溯光是一个开源的插件化渗透测试框架,框架自身实现了漏洞扫描功能,集成了知名安全工具:Metasploit.Nmap.Sqlmap.AWVS等. 溯光使用 Java 编写,SpringBo ...
最新文章
- html select以数组的方式提交
- java打印系统参数_Java学习(二十):获取系统参数
- 云计算管理三利器:Nagios、Ganglia和Splunk
- 中国开源年会 COSCon 2018 今起接受报名!
- snapchat注册不到_从Snapchat获得开发人员职位中学到的经验教训
- 右边菜单_AI基础教程65:使用文字菜单编辑文字(七)查找字体
- python元胞自动机模拟交通_基于立体网格的放射性污染物扩散过程模拟与表达
- 那些很重要,但是不常用的技术,websocket
- 坯子库曲面推拉教程_psd素材丨嘤,今天是仙仙的水墨风建筑表达教程(文末附讲解视频+效果图+贴图素材合集)...
- JavaWeb POI 将数据从数据库导出到Excel表 实例(亲测有效!)
- 精通javascript学习笔记
- 使用Stream生成菜单、地区树
- 【附源码】手写一个Ico生成器
- python语言月份缩写_[宜配屋]听图阁
- .NET Reflector(.net反编译工具) v10.0.7.774 特别版(附破解步骤+注册机)
- 哒螨灵使用注意事项_常用杀虫剂-哒螨灵使用方法
- vue+axios上传文件的几种方式及步骤(以上传图片为例)
- Vue - 路由导航守卫控制访问权限,设置 localStorage 过期时间
- 彻底解决python关于各种文件(音乐、视屏等)读写的操作
- SpringBoot redis GEO 实战应用