Metasploit Framework

Metasploit Framework - Check for system errors

The Metasploit Framework is an environment used to test, attack and exploit errors of services. Metasploit is built from the object-oriented language Perl, with components written in C, assembler, and Python.

Metasploit can automatically update starting with version 2.2 onwards, using the msfupdate.bat script in the installation directory.

Components of Metasploit

Metasploit supports multiple user interfaces:

• console interface: use msfconsole.bat. Msfconsole interface uses the command line to configure, test should be faster and more flexible
• Web interface : using msfweb.bat, communicate with users via web interface
• Command line interface : use msfcli.bat

Enviroment

• Global Enviroment : executed via the setg and unsetg commands, the options assigned here will be global, included in all exploits modules.
• Temporary Enviroment: executed through 2 set and unset commands, this enviroment is only put into the current exploiting module, does not affect other exploit modules.

You can save the enviroment you have configured via the save command. That environment will be saved in /.msf/config and will be loaded again when the user interface is implemented

Which options are common among exploits modules such as: LPORT, LHOST, PAYLOAD, you should be defined in Global Enviroment

ex: msf> setg LPORT 80
msf> setg LHOST 172.16.8.2

1. Select module exploit : select programs, service errors that Metasploit has support to exploit
- show exploits : see the exploit modules that the framework supports
- use exploit_name : select module exploit
- info exploit_name : see module exploit information

You should regularly update service errors on www.metasploit.com or via msfupdate.bat script

2. Configure the selected exploit module
- show options : Determine which options need configuring
- set : configure the options for that module

Some modules also have advanced options, which you can view by typing the command show advanceds.

3. Verify the configured options:
check : check if the options have been correctly set.

4. Target selection: select the operating system to execute
- show targets : targets provided by that module
- set : specify the target
ex: smf> use windows_ssl_pct
show targets
The exploit will list out targets like: winxp, winxp SP1, win2000, win2000 SP1

5. Select payload
- The payload is the code that will run on the remote machine system
- show payloads : list the payloads of the current exploit module
- info payload_name : see details about that payload
- set PAYLOAD payload_name : determine the payload module name. After selecting the payload, use the show options command to view the payload options.
- show advanced : see the advanced options of that payload

6. Execute exploit
exploit: thecommand used to execute the payload code.The payload will then give you information about the system being exploited.