| About Blog Cheatsheets Defense Links Offense |
| Offense |
| Code Audit Exploit Hacking Input Validation Metasploit Methods Nmap OSSTMM Test OWASP Webtest Pentest Physical Pentest Backtrack Pentest SQL Inject |
Metasploit
| Command | Description |
| help | command help |
| search | search (portscan|scanner/http) |
| show | show (modules|exploits|auxiliary|payloads) |
| use | use module |
| info | show information |
| show options | show (target|LHOST|RHOST) |
| set | set (target|LHOST|RHOST) |
| save | save as default settings |
| run | run auxilary |
| exploit | run exploit |
| rc scripts | ./msfconsole confic.rc | resource confic.rc |
| db_autopwn | -h (-e -t -r -x -p) |
Meterpreter
| Command | Description |
| background | backgrounds session |
| sessions | sessions -i | sessions -i id |
| screenshot | guess what |
| sysinfo | system information |
| ps | process list |
| migrate | migrate pid (explorer) |
| hashdump |
run post/windows/gather/hashdump run post/linux/gather/hashdump run post/osx/gather/hashdump |
| usepriv | use privileges |
| shell | spawn a shell |
| getsystem | get SYSTEM privileges |
| steal_token | steal_token pid |
| list_tokens | list_tokens –u |
| incognito | use incognito |
| impersonate_token | impersonate a token |
| add user/group | add_user | add_group_user |
| get_local_subnets | run get_local_subnets |
| route | network routes |
| vnc | run vnc |
| screen_unlock | run screen_unlock |
| killav | kill antivirus |
| sniff | run packetrecorder -i 1 |
| scraper | run html scraper |
| persistence | run persistence |
| irb | interactive ruby shell |