Shulou(Shulou.com)06/01 Report--

What this article shares with you is about how to collect Metasploit information. The editor thinks it is very practical, so I share it with you to learn. I hope you can get something after reading this article.

I. MSF updates

1 、 apt-get update

2 、 apt-get install metasploit-framework

Second, sensitive catalogue collection

1. Find the dir_scanner module

Search dir_scanner type:auxiliary

2. Select the auxiliary module used for scanning

Use 0 or use auxiliary/scanner/http/dir_scanner

3. View the parameters that need to be set

Show options

4. Set the target host

Set RHOSTS 192.168.1.

5. Set the port

Set RPORT 8003

6. Set the number of threads

Set THREADS 50

7. Run, run

8. Scan results

9. Dictionary directory, you can add your own dictionary

Third, host discovery

1. Available scanning modules

Auxiliary/scanner/discovery/arp_sweep

Auxiliary/scanner/discovery/empty_udp

Auxiliary/scanner/discovery/ipv6_multicast_ping

Auxiliary/scanner/discovery/ipv6_neighbor

Auxiliary/scanner/discovery/ipv6_neighbor_router_advertisement

Auxiliary/scanner/discovery/udp_probe

Auxiliary/scanner/discovery/udp_sweep

2. Take arp scanning as an example to view the options you need to set.

Show options

3. Set the host range

Set rhosts 192.168.1.0/24

4. Set the number of threads during scanning

Set threads 50

5. Run run

IV. Port scanning

1. Available modules

Auxiliary/scanner/portscan/ack

Auxiliary/scanner/portscan/ftpbounce

Auxiliary/scanner/portscan/syn

Auxiliary/scanner/portscan/tcp

Auxiliary/scanner/portscan/xmas

2. Take syn scanning as an example to view the parameters to be set.

3. Set the target ip

Set rhosts 192.168.1.135

4. Set the number of threads

Set threads 50

5. Run, run

5. Obtain service details

Nmap-sS-Pn 192.168.1.135-sV

6. Find hosts that specifically open a certain service

1. Hosts that open telnet services

Select module: use auxiliary/scanner/telnet/telnet_version

Set the ip range: set rhosts 192.168.1.0 take 24

Setting thread: set threads 100

Run: run

2. Hosts that open SSH services

Select module: use auxiliary/scanner/ssh/ssh_version

Set the ip range: set rhosts 192.168.1.0 take 24

Setting thread: set threads 100

Run: run

The above is how to collect Metasploit information. The editor believes that there are some knowledge points that we may see or use in our daily work. I hope you can learn more from this article. For more details, please follow the industry information channel.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.