Metasploit HackingOtherPenetration Testing

Guide on NMAP and Metasploit 2015

Hi, Today we are Writing About Guide on NMAP and Metasploit Hacking with Nmap with Metasploit. Let all that install, and towards the end of the installation it will ask if you would like Nmap installed also, choose yes. Once you have that installed the Metasploit screen will open up as shown below…


Screen Shot 2015-11-12 at 23.01.30

Now type db_create

Once you have typed that type nmap

This loads nmap, as shown below….

You need to configure your scan now, I usually do a simple -sT -sV scan which will tell us the open ports and services running on the victim’s computer, Now type nmap -sT -sV (X’s being victims Ip number), Demonstrated below.

Now give it 5 minutes to complete the scan,Once that is complete if you’re lucky you should get a response like this.

This is basically a list of the open ports and services running on the target machine, Now the handy feature of the metasploit 3.3 framework is the autopwn feature, this basically searches and runs all matching exploits in the Metasploit database against the target machine and if successful will create a shell or similar privilege for the attacker.

Also Read: Using the Msfconsole interface

Now once you have the nmap results delivered back to you showing the open ports and services type db_autopwn -p -t -e , From this point you will either have access to the victims computer through a successfully launched exploit or you will get a response saying the machine wasn’t vulnerable to any of the exploits in the Metasploit database. Unfortunately on this particular machine I found it wasn’t vulnerable as the image below proves.Good luck.


Related Articles

Back to top button