When trying to find or chose a Metasploit module there are 5 tricks that I use. I will briefly go over each.
#1 Google
I start with the base site:metasploit.com inurl:modules then add search criteria or play with "inurl" to zoom in on what I am looking for (e.g. add inurl:windows or inurl:exploits/windows/iis). If you don't want to search through the source code, wiki, and tickets you can add -inurl:redmine/projects
#2 msfconsole's search command
Type "search -h" next time you are sitting in front of the console. The Option searching was broken for awhile, but I submitted a patch that fixed it. It's pretty cool. Type "search -o URIPATH,RPORT=8080" to search for all modules that have an option "URIPATH" and that have another option RPORT that defaults to port 8080.
#3 aut<tab><tab>
The auto-complete feature of msfconsole is fairly useful for listing modules. Since modules are organised in a tree like structure (at the base you have module type, then platform, then category, and only then the specific module), it is easy to narrow down the results before getting a list. And the results are paginated! Type "info post/windows/gather/" and then hit tab twice
#4 Ctrl-r
To do an incremental search backwards through your history, use control+r. This is useful when trying to cycle through past "use"ed modules (or any command for that matter!) Hold down the Ctrl key then hit r, type 'use', hit control+r again to go backwards through time. I am not sure if this works in Windows.
#5 find and/or grep
Back in the day (and by that I mean before I wrote this blog post and got this idea) I would issue find and grep commands when a little Google magic might have done a better job. site:metasploit.com inurl:redmine/projects/framework/repository/ Although, if you want to use regular expressions there still is grep -rP 'some regex here' modules/ --exclude-dir=.svn
Have fun!
PS.
A thank you to egypt who pointed out that I could/should use --exclude-dir
Wednesday, February 16, 2011
Wednesday, December 15, 2010
Friday, October 15, 2010
Hack your Eardrums
I was delighted to discover that BackTrack Linux's default installation of Firefox contains a bookmark to Soma.FM. If you haven't checked them out, I would suggest doing so right now. It's an independent (Internet) radio station (?) that is entirely community funded. They have a great selection of stations and are well worth the few mouse clicks it takes to tune in.
At this moment I am listening to the station "cliqhop idm" described as "Blips'n'beeps backed mostly w/beats. Intelligent Dance Music."
Or you could always just...
yes > /dev/dsp
10 points to the person who leaves a comment explaining how to pipe infinite bits of /dev/urandom to /dev/dsp!
~ noise ~
At this moment I am listening to the station "cliqhop idm" described as "Blips'n'beeps backed mostly w/beats. Intelligent Dance Music."
Or you could always just...
yes > /dev/dsp
10 points to the person who leaves a comment explaining how to pipe infinite bits of /dev/urandom to /dev/dsp!
~ noise ~
Subscribe to:
Posts (Atom)