Metasploit Review Lab

TOPICS:

Getting Familiar with Metasploit

Vulnerability Scanning with WMAP

Configuring Exploits and Payloads

Getting Familiar with Metasploit:

Run the msfdb init command to initialize the Metasploit database

Run the service postgresql start command start the Postgres database server

Run the msfconsole command to launch the msfconsole

Once the console is launched, run the help command to learn about the basic Metasploit commands

Terminal commands like ifconfig can be used inside of the msfconsole

Run the connect command to use netcat within msfconsole to connect to services, and press CTRL-C to break the connection

• Syntax: connect [IP address] [port]

Run the show all command to see all of the modules available in Metasploit

Run the show exploits command to see all of the exploits and payloads available in Metasploit

Run the show payloads command to see all of the payloads available in Metasploit

Vulnerability Scanning with WMAP:

WMAP is a web app vulnerability scanner in Metasploit

Run the load wmap command to load WMAP

Run the wmap_sites -h command to see options for managing the sites we want scan

Adding a site to scan

• Syntax: wmap_sites -a https://[IP address]

Run the wmap_sites -l command to confirm added sites

Run the wmap_targets -t command to select an available site as the target for the mutillidae module

• Syntax: wmap_sites -t https://[IP address]/mutillidae/index.php

Run the wmap_targets -l command to confirm added target site

Run the wmap_run -h command to see options for scanning the target site

Run the wmap_run -t command to see all the modules available to use against the target

Run the cat /root/profile command to see the profile that will be used in the WMAP scan

Use the wmap_run -e /root/profile command to run the scanner using the profile

Run the wmap_vulns -l command to list the vulnerabilities found during the scan

Configuring Exploits and Payloads

Use the search command to find exploits for a target software

Run the info command to learn how to use the specified exploit

• Syntax: info exploit/path/to/the_exploit

Run the use command to load up the exploit

• Syntax: use exploit/path/to/the_exploit

Run the show options command once the exploit is loaded to view and set up the available options

Run the set RHOST command to set the target for the exploit

• Syntax: set RHOST [IP address]

Run the set payload command to choose the payload that will be delivered to the target server once the exploit is successful

• Syntax: set payload path/to/the_payload

Once the payload is selected, the show options command will include the payload options

Run the set LHOST command to set the listener for the attack machine

• Syntax: set LHOST [IP address]

Once all the exploit options are set, run the exploit command to initiate the exploit

Resources:

Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads:

• https://www.youtube.com/watch?v=8lR27r8Y_ik

Use Metasploit's WMAP Module to Scan Web Applications for Common Vulnerabilities:

• https://null-byte.wonderhowto.com/how-to/use-metasploits-wmap-module-scan-web-applications-for-common-vulnerabilities-0187572/