1
00:00:00,590 --> 00:00:05,420
So MSF has such a wide variety of different commands.

2
00:00:06,680 --> 00:00:12,800
And they all have well-defined name conventions that will help you to rule the framework.

3
00:00:13,750 --> 00:00:14,500
So let's have a look.

4
00:00:15,850 --> 00:00:20,170
Core commands, these are the basic commands of Métis boy.

5
00:00:21,250 --> 00:00:26,320
You can use them to make general-purpose as well as framework level tasks.

6
00:00:28,160 --> 00:00:35,020
Module command, they're there to help you move between modules and to pass values to the variable,

7
00:00:35,600 --> 00:00:38,060
you can view and use a module with these commands.

8
00:00:39,480 --> 00:00:47,010
Job commands are basically used for interacting with your sessions to view the status of the jobs that

9
00:00:47,010 --> 00:00:47,610
you've started.

10
00:00:48,740 --> 00:00:56,300
Resource script command allow you to record and to run your own scripts, to automate your routines,

11
00:00:56,980 --> 00:01:02,780
develop a command, allow you to edit the files and interact with Ruby.

12
00:01:04,360 --> 00:01:13,300
Database commands are like we were talking about before, importing and exporting, as well as the connection

13
00:01:13,300 --> 00:01:18,520
to a database with these commands, that's where you're going to save your findings.

14
00:01:19,510 --> 00:01:27,310
And the credential commands are used when you activate database and they help you to store and get credentials

15
00:01:27,310 --> 00:01:30,010
found while you're doing your penetration testing.

16
00:01:30,950 --> 00:01:39,290
So I chose Somerset's so that you get the basic idea about how to use them, so why don't we go ahead

17
00:01:39,290 --> 00:01:42,160
and jump in a Akali to see them in action?

18
00:01:43,120 --> 00:01:44,440
Go ahead and open your terminal.

19
00:01:46,860 --> 00:01:48,870
And just right MSF console.

20
00:01:50,590 --> 00:01:57,730
So this time you see that I don't put the Q as a parameter because, well, I don't want to view that

21
00:01:57,750 --> 00:02:00,730
banner banners are these funny things here.

22
00:02:01,730 --> 00:02:05,930
You can change them every time by typing the banner command.

23
00:02:07,390 --> 00:02:14,560
But believe me, that's not the actual fun part, you're going to find the real fun in later modules,

24
00:02:14,570 --> 00:02:17,050
but I want to make sure that you're well versed in the basics.

25
00:02:17,960 --> 00:02:24,950
So I'll choose to divide the MSF console commands into groups to show you in a more meaningful way and

26
00:02:25,340 --> 00:02:26,820
make it clear so.

27
00:02:27,330 --> 00:02:28,280
OK, let's start.

28
00:02:29,300 --> 00:02:39,080
Color command will provide a colorful output if you enable it now, by default, it is enabled and you

29
00:02:39,080 --> 00:02:42,380
may disable it for whatever reason you like.

30
00:02:43,040 --> 00:02:46,030
I'm going to enable it by putting in color.

31
00:02:46,040 --> 00:02:46,650
True.

32
00:02:47,600 --> 00:02:49,310
Now, review view the MSF version.

33
00:02:49,310 --> 00:02:51,560
Just type the version command.

34
00:02:53,090 --> 00:02:57,740
All right, so this is my installation version when I was recording the course.

35
00:02:58,670 --> 00:03:05,540
And then beside MSF console command, the interface allows you to execute Linnik system commands.

36
00:03:06,140 --> 00:03:11,540
Now, I don't know if it's the same in Windows, but on Linux you have this flexibility.

37
00:03:12,960 --> 00:03:15,720
I can change my directory and view it.

38
00:03:19,170 --> 00:03:21,540
Or I can check my I.P. address.

39
00:03:22,670 --> 00:03:27,440
But anyway, I think you get the point, so you still have questions about the command.

40
00:03:28,710 --> 00:03:34,140
All right, so type this into the console and it will help you.

41
00:03:35,210 --> 00:03:37,040
Or just put help.

42
00:03:38,000 --> 00:03:42,860
And you'll see the same output and let's say this is not enough and.

43
00:03:43,840 --> 00:03:51,340
You want some specific info about a particular command type help and then the command name.

44
00:03:51,880 --> 00:03:54,340
So, for example, help workspace.

45
00:03:56,250 --> 00:03:58,260
Or maybe help, help.

46
00:03:59,220 --> 00:04:00,480
There's only so much I can do.

47
00:04:01,470 --> 00:04:03,600
OK, so type help search.

48
00:04:04,480 --> 00:04:11,740
And then let's have a look at the search command help output, so this command will really be helpful

49
00:04:12,070 --> 00:04:13,450
to find a module.

50
00:04:14,640 --> 00:04:22,110
And you're going to use it many times, it's OK, you just stick in a search term and you'll see the

51
00:04:22,110 --> 00:04:28,570
results and as you can see from the help screen, you can also be more specific while you're searching.

52
00:04:28,950 --> 00:04:32,670
So let's type in search name Java.

53
00:04:33,270 --> 00:04:38,340
Now, that is, you see, we'll bring up many Java related modules to the screen.

54
00:04:39,360 --> 00:04:42,900
That search name Java rank, excellent.

55
00:04:45,450 --> 00:04:46,620
2011.

56
00:04:47,580 --> 00:04:54,270
OK, so only three results, so obviously you can narrow the result by being more specific.

57
00:04:54,810 --> 00:04:57,870
OK, so the next thing is gripping.

58
00:04:58,800 --> 00:05:02,190
You can grip the output of this command like this.

59
00:05:03,880 --> 00:05:11,800
Métis boy also records your history like bash, so it has a history file and with a history command,

60
00:05:12,580 --> 00:05:17,380
you can view what you have entered in the MSF console just like that.

61
00:05:18,140 --> 00:05:20,350
Here you can see some of my previous commands.

62
00:05:21,980 --> 00:05:26,390
But you can also save all the output, not only to history.

63
00:05:27,290 --> 00:05:30,290
So look at the spool command.

64
00:05:31,240 --> 00:05:40,810
Well, type spool and then the output file name, and then it will save everything spool, desktop,

65
00:05:41,500 --> 00:05:42,160
Ms.

66
00:05:42,160 --> 00:05:44,350
F dot log.

67
00:05:45,570 --> 00:05:54,510
So now whatever you see in MSF console will be saved to that file, so let's get this file.

68
00:05:55,400 --> 00:05:57,680
And there it is, it saves everything.

69
00:05:58,910 --> 00:06:04,990
Here, you might want to type S'pore star, but I'm not going to do that now.

70
00:06:06,190 --> 00:06:13,810
In a penetration test, you may also configure the meds according to your needs, and you were allowed

71
00:06:13,810 --> 00:06:21,130
to save your configuration by simply typing the save command and then your configuration will be saved

72
00:06:21,130 --> 00:06:22,000
to that file.

73
00:06:24,150 --> 00:06:25,200
Now here.

74
00:06:26,240 --> 00:06:31,160
Because I'm not making any change to the default settings, you won't see anything.

75
00:06:32,680 --> 00:06:36,010
If you finish your work with Métis Point, you can then quit.

76
00:06:37,190 --> 00:06:44,060
By using Quitte or Vecsey command, you can close up, better deploy and exit just like that.