渗透测试学习笔记 ----metasploit
常用命名
搜索漏洞命令:search <name>
使用漏洞命令:use <exploit name>
显示选项:show options
设置选项:set <OPTION NAME> <option>
显示装置:show payloads
显示目标:show targets
设置目标版本:set TARGET <target number>
开始漏洞攻击:exploit
列出会话:sessions –l
选择会话:sessions –i <ID>
结束会话:sessions –k <ID>
把会话放到后台:<ctrl>+ z
结束会话:<ctrl>+c
显示辅助模块:show auxiliary
使用辅助模块:use <auxiliary name>
运行模块:run
扫描主机 msf:use auxiliary/scanner/portscan/syn
查找mssql(sql server)主机:msf:use\auxiliary/scanner/mssql/mssql_ping
ssh服务器扫描:msf:use auxiliary/scanner/ssh/ssh_version
telnet扫描:msf:use auxiliary/scanner/telnet/telnet_version
ftp扫描:msf:use auxiliary/scanner/ftp/ftp_version
扫描ftp匿名登录:msf:use auxiliary/scanner/ftp/ftp_anonymos
扫描局域网内存活的主机:msf:use auxiliary/scanner/discovery/arp_sweep
扫描网站目录:msf:use auxiliary/scanner/http/dir_scanner
samba攻击:msf:use auxiliary/scanner/smb/smb_login
扫描SNMP主机:msf:use auxiliary/snmp/snmp_login
扫描网站中的E-mail地址:msf:use auxiliary/gather/search_email_collector
嗅探抓包:msf:use auxiliary/sniffer/psnuffle