Metasploit introduction

From Hackerspace Brussels
Jump to: navigation, search


Metasploit introduction
Sun 20 May 2018 14:00
till Sun 20 May 2018 0:00
Metasploit.jpg
What:
{{{what}}}
Tagline:
Baby steps: what's metasploit? How does it work?
Where:
HSB Brussels,Belgium
Cost:
0
Who:
Jurgen
URL:


What is Metasploit? How does it work? Just the first baby steps. Let's figure out more together...

The Metasploit Project is a computer security project that provides information about security vulnerabilities and aids in penetration testing.

More info on the project site: https://www.metasploit.com


Some introductory videos and other resources[edit]

Please have a look at them so we can speed up to the fun part...


What you need to do[edit]

An environment with a few typical vulnerable devices (metasploitable, ...) will be available to go at it. Bring a laptop with WiFi and metasploit installed. You could also just run from a virtual machine or live CD with Kali Linux or Parrot OS.

Slide Deck[edit]

About Metasploit[edit]

6 types of modules[edit]

  • Exploits: take advantage of a system vulnerability
  • Payloads: plant this on the system to get access
  • Auxiliary: discovery tools (crawl, scan, snif) etc...
  • Nops: “nop = do nothing” – to allow remote execution
  • Post: post-exploitation tools (escalation, capture, ...)
  • Encoders: evasion, bypassing firewall, etc...

Basic commands in Metasploit[edit]

  • Help = overview of all commands
  • use: load a module → visible in command line
  • search: search a module
  • set and setg (set globally)
  • back
  • exit

!! Autocomplete :D (tab)

Most important commands in a module[edit]

  • show info
  • show options
  • show payloads
  • show targets
  • set and setg
  • run (=exploit)

Searching in metasploit[edit]

First steps when looking into a network[edit]

  • IP-range
  • Open ports
  • TOOL: nmap
  • Metasploit: db_nmap

Modular Layout[edit]

You can easily add modules to MetaSploit. You can find these on Github or on Exploit-db.

Practical tips[edit]

  • Go to /usr/share/metasploit-framework/modules and keep this over for a practical overview of available modules
  • ...