MSF Command Collection

First, Msfconsole

? Help Menu

Back from the current environment

Banner shows an MSF banner

CD Switch Directory

Color conversion

Connect a Host

Exit MSF

Help Menu

Info displays information for one or more modules

IRB enters IRB scripting mode

Jobs display and management operations

Kill kills a job

Load loads a plugin

LoadPath Search and load modules in a single path

Quit Quit MSF

Resource running commands stored in a file

Route view routing information for a session

Save saves Action

Search Module Name and description

Set assigns a value to a variable

SETG Assigning a value to a global variable

Show shows the module of the given type, or all modules

Sleep does nothing for a limited number of seconds

Unload Uninstalling a module

unset remove one or more variables

UNSETG unbind one or more global variables

Use Select a module by name

Version displays the MSF and console library release numbers

Second, database

Db_add_host adding one or more hosts to the database

Db_add_note Adding a comment to the host

Db_add_port adding a port to the host

Db_connect connecting to an existing database

Db_create creating a new DB instance

Db_del_host removing one or more hosts from a database

Db_del_port removing a port from the database

Db_destroy Deleting an existing database

Db_disconnect disconnecting from the current DB instance

Db_driver Specifying a database driver

Db_hosts list all hosts in the database

Db_nmap execute nmap and record output

Db_notes List all comments in the database

Db_services list all services in a database

Db_vulns list all vulnerabilities in the database

Db_workspace Converting a Database workspace

Db_import_ip_list introducing an IP list file

Db_import_amap_mlog introduction of a THC-AMAP scan result file (-o-m)

Db_import_nessus_nbe introduction of a NESSUS scan result file (NBE)

Db_import_nessus_xml introducing a nessus scan result file

Db_import_nmap_xml introduction of an NMAP scan result file (-ox)

DB_AUTOPWN Automatic Use

Third, Db_autopwn

-H Display Help

-T displays all matching utilization modules

-X Select the vulnerability-based module

-P Select modules based on open ports

-e Run all matching targets using the program

-R with a reverse-connected shell (reverse)

-B bind shell with a random port (BIND)

-Q Disables the use of program output

-l [Range] uses only hosts in this range

-X [Range] always excludes hosts in this range

-PI [Range] is only used by hosts that open these ports

-PX [Range] always excludes hosts that open these ports

-m [Range] only runs modules with names matching regular expressions

Iv. Meterpreter

Core command:

? Help Menu

Channel display information for dynamic channels

Close closes a channel

Exit terminates Meterpreter session

Help Menu

Interact Channel Interaction

IRB IRB scripting mode

Migrate transferring Meterpreter to other processes

Quit Stop Meterpreter

Read data from Channel

Run executes a meterpreter script

Use to load one or more extensions

Write data to Channel

File System command:

Cat reads a file content to the screen

CD Switch Directory

Del Delete the specified file

Download Download a file or directory

Edit a file

GETLWD get local working directory

GETWD Switch Working directory

LCD switch Local working directory

LPWD Printing Local working directory

LS file list

mkdir Creating a Directory

PWD Prints the current working directory

RM deletes the specified file

RmDir Remote Directory

Upload uploading a file or directory

Network command:

ipconfig Display network interface

PORTFWD send a local port to a remote service

Route view and Modify route table

System command:

Clearev clearing the event log

Execute executes a command

Getpid get current Process ID

Getuid Get server running user

Kill kills a process

PS List of process lists

Reboot restarting the remote computer

Reg Modify Remote Registry

Rev2self on remote machine call RevertToSelf ()

Shell returns a Cmdshell

Shutdown shutting down the remote system

SysInfo access to remote system information

User interface Commands:

EnumDesktops List all Access desktops and Windows workstations

Idletime Remote User idle time

Keyscan_dump Dump keystroke cache

Keyscan_start Start capturing keystrokes

Keyscan_stop Stop snapping keystrokes

Setdesktop transferring another workstation desktop

Uictl User Interface Control

Password Database command:

Hashdump Sam Dump

Time stamp command:

Timestomp modifying file timestamps

MSF Command Collection