Show Menu

Metasploit 4.5.0-dev.15713 Cheat Sheet by huntereight

A quick guide to Metasploit and Meterpreter that will stay updated.

Database Commands

Conn­ectdb_connect
Disc­onn­ectdb_dis­connect
Export Databasedb_export
Import Scan Resultdb_import
Status of Databasedb_status
Display Hostshosts
Display Lootloot
Display Notesnotes
Display Servicesservices
Display Vulner­abi­lit­iesvulns
Switch Between Worksp­acesworkspace
NMAP Scan into Databasedb_nmap

Core Commands

Display Help? or help
Go Backback
Change Direct­orycd
Toggle Colorcolor
Comm­unicate with a Hostconnect
Exit Metasp­loitexit
Display Info of Moduleinfo
Go into irbirb
Display and Manage Jobsjobs
Stop a Jobkill
Load a Pluginload
Load a Plugin from Pathloadpath
Print Commands Entered to a Pathmakerc
Set Previous Module as Current Moduleprevious
Pops the Latest Module Off of the Module Stack and Makes it Activepopm
Pushes the Active or List of Modules onto the Module Stackpushm
Quit the Consolequit
Run Commands Stored in a Fileresource
Route Traffic Through a Connec­tionroute
Save Datast­oressave
Search for Modulessearch
Dump Session Listings and Display Inform­ation about Sessionssessions
Set Variable of a Moduleset
Set a Global Variablesetg
Display Modules of a Type, or All Modulesshow
Do Nothing for X Secondssleep
Write All Output to a Filesspool
Mani­pulate Threadsthreads
Unload a Pluginunload
Unset a Variableunset
Unset a Global Variableunsetg
Use a Module (by Name)use
Show Metasploit Infoversion
 

Meterpreter Core and File System

Back­ground the Current Sessionbackground
Kill a Background Meterp­reter Scriptbgkill
Displays Info About Active Channelschannel
Close a Channelclose
Disables Encoding of Unicode Stringsdisabl­e_u­nic­ode­_en­coding
Enable Encoding of Unicode Stringsenable­_un­ico­de_­enc­oding
Exit Meterp­reter Shellexit
Display Helphelp
Display Info About Active Post Moduleinfo
Interact with a Channelinteract
Drop into irb Scripting Modeirb
Load One or More Meterp­reter Extens­ionsload
Migrate the Server to Another Processmigrate
Term­inate the Meterp­reter Sessionsquit
Reads Data from a Channelread
Run the Commands Stored in a Fileresource
Executes a Meterp­reter Script or Post Modulerun
Write Data to a Channelwrite
Read the Contents of a File to the Screencat
Change Direct­orycd
Download File to Your Computerdownload
Edit a Fileedit
Print Local Working Direct­orygetlwd
Print Working Direct­orygetwd
Change Local Working Direct­orylcd
Print Local Working Direct­orylpwd
List Filesls
Make Direct­orymkdir
Print Working Direct­orypwd
Delete the Specified Filerm
Remove Direct­oryrmdir
Search for Filessearch
Upload File to Targetupload

Meterpreter User Interface Commands

List All Accessible Desktops and Window Stationsenumde­sktops
Get the Current Meterp­reter Desktopgetdesktop
Display the Amount of Time the User has been Idleidletime
Start Capturing Keystr­okeskeysca­n_start
Stop Capturing Keystr­okeskeysca­n_stop
Dump the Keystroke Bufferkeysca­n_dump
Scre­enshot of the GUIscreenshot
Change the Meterp­reters Current Desktopsetdesktop
Control Some of the User Interface Compon­entsuictl
 

Meterpreter System Commands

Clear the Event Logclearev
Reli­nqu­ishes Any Active Impers­onation Tokendrop_token
Execute a Commandexecute
Get the Current Process Identi­fiergetpid
Attempt to Enable All Privileges Available to the Current Processgetprivs
Get the User that the Server is Running asgetuid
Term­inate a Processkill
List Running Proces­sesps
Reboots the Remote Computerreboot
Interact with the Remote Registryreg
Calls Revert­ToS­elf() on the Remote Machinerev2self
Drop into a System Command Shellshell
Shuts Down the Remote Computershutdown
Attempt to Steal an Impers­onation Token from the Processsteal_­token
Gets Inform­ation About the Remote Systemsysinfo

Meterpreter Priv Commands

List Webcamswebcam­_list
Take a Snapshot from the Specified Webcamwebcam­_snap
Attempt to Elevate your Priviledge to that of Local Systemgetsystem
Dumps the Contents of the SAM Databasehashdump
Mani­pulate MACE Attrib­utestimestomp
 

Share This Cheat Sheet!

Favourited by 6 Members:

Lasantha im_chc rajivvishwa 0x90 emre dttk

Comments

Hacker Hacker, 11:14 2 Jan 13

It is splendid tool for pen-testing.

Add a Comment

Your Comment

Please enter your name.

    Please enter your email address

      Please enter your Comment.