First, Msfconsole
? Help Menu
Back from the current environment
Banner shows an MSF banner
CD Switch Directory
Color conversion
Connect a Host
Exit MSF
Help Menu
Info displays information for one or more modules
IRB enters IRB scripting mode
Jobs display and management operations
Kill kills a job
Load loads a plugin
LoadPath Search and load modules in a single path
Quit Quit MSF
Resource running commands stored in a file
Route view routing information for a session
Save saves Action
Search Module Name and description
Set assigns a value to a variable
SETG Assigning a value to a global variable
Show shows the module of the given type, or all modules
Sleep does nothing for a limited number of seconds
Unload Uninstalling a module
unset remove one or more variables
UNSETG unbind one or more global variables
Use Select a module by name
Version displays the MSF and console library release numbers
Second, database
Db_add_host adding one or more hosts to the database
Db_add_note Adding a comment to the host
Db_add_port adding a port to the host
Db_connect connecting to an existing database
Db_create creating a new DB instance
Db_del_host removing one or more hosts from a database
Db_del_port removing a port from the database
Db_destroy Deleting an existing database
Db_disconnect disconnecting from the current DB instance
Db_driver Specifying a database driver
Db_hosts list all hosts in the database
Db_nmap execute nmap and record output
Db_notes List all comments in the database
Db_services list all services in a database
Db_vulns list all vulnerabilities in the database
Db_workspace Converting a Database workspace
Db_import_ip_list introducing an IP list file
Db_import_amap_mlog introduction of a THC-AMAP scan result file (-o-m)
Db_import_nessus_nbe introduction of a NESSUS scan result file (NBE)
Db_import_nessus_xml introducing a nessus scan result file
Db_import_nmap_xml introduction of an NMAP scan result file (-ox)
DB_AUTOPWN Automatic Use
Third, Db_autopwn
-H Display Help
-T displays all matching utilization modules
-X Select the vulnerability-based module
-P Select modules based on open ports
-e Run all matching targets using the program
-R with a reverse-connected shell (reverse)
-B bind shell with a random port (BIND)
-Q Disables the use of program output
-l [Range] uses only hosts in this range
-X [Range] always excludes hosts in this range
-PI [Range] is only used by hosts that open these ports
-PX [Range] always excludes hosts that open these ports
-m [Range] only runs modules with names matching regular expressions
Iv. Meterpreter
Core command:
? Help Menu
Channel display information for dynamic channels
Close closes a channel
Exit terminates Meterpreter session
Help Menu
Interact Channel Interaction
IRB IRB scripting mode
Migrate transferring Meterpreter to other processes
Quit Stop Meterpreter
Read data from Channel
Run executes a meterpreter script
Use to load one or more extensions
Write data to Channel
File System command:
Cat reads a file content to the screen
CD Switch Directory
Del Delete the specified file
Download Download a file or directory
Edit a file
GETLWD get local working directory
GETWD Switch Working directory
LCD switch Local working directory
LPWD Printing Local working directory
LS file list
mkdir Creating a Directory
PWD Prints the current working directory
RM deletes the specified file
RmDir Remote Directory
Upload uploading a file or directory
Network command:
ipconfig Display network interface
PORTFWD send a local port to a remote service
Route view and Modify route table
System command:
Clearev clearing the event log
Execute executes a command
Getpid get current Process ID
Getuid Get server running user
Kill kills a process
PS List of process lists
Reboot restarting the remote computer
Reg Modify Remote Registry
Rev2self on remote machine call RevertToSelf ()
Shell returns a Cmdshell
Shutdown shutting down the remote system
SysInfo access to remote system information
User interface Commands:
EnumDesktops List all Access desktops and Windows workstations
Idletime Remote User idle time
Keyscan_dump Dump keystroke cache
Keyscan_start Start capturing keystrokes
Keyscan_stop Stop snapping keystrokes
Setdesktop transferring another workstation desktop
Uictl User Interface Control
Password Database command:
Hashdump Sam Dump
Time stamp command:
Timestomp modifying file timestamps
Metasploit Framework Command Rollup