##写在前言
Knowledge is power, especially when it’s shared. A collaboration between the open source community and Rapid7, Metasploit helps security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness; it empowers and arms defenders to always stay one step (or two) ahead of the game.
安装metasploit
强烈推荐使用kali Linux系统,我个人发自内心的觉得他超级好用,抛开自带的200多个渗透工具,他也是非常强大的系统。
不说废话了,我们先来下载kali的系统,我这边是直接下载了kali的虚拟机配置,下面:
kali linux 下载
VMware下载
下载完以后,在kali linux里面就会自带metasploit工具,同时还有nmap、netcat等网络安全工具,可以配合着使用
启动metasploit
首先我们先启动Kali Linux,我们可以看到是这样的
默认的账号和密码都是kali,我们输入完以后进入系统,先点这里,在此输入自己的账号密码(kali)
提前说明一下,这里是使用了root权限,防止我们某些操作因为权限问题执行不了
kali命令行的复制是ctrl+shift+c,粘贴同理ctrl+shift+v
我们输入msfconsole,进入到msf界面
再接着,我们可以查看help,具体用法也可以在官网查看
msf_help
Core Commands
=============
Command Description
------- -----------
? Help menu
banner Display an awesome metasploit banner
cd Change the current working directory
color Toggle color
connect Communicate with a host
debug Display information useful for debugging
exit Exit the console
features Display the list of not yet released features that can be opted in to
get Gets the value of a context-specific variable
getg