Tag: auxiliary

Information Gathering, Metasploit, Reconnaissance

Email harvesting with Metasploit

Email harvesting is the process of obtaining lists of email addresses using various methods. You can check on your own what emails, attackers are going to find about your domain using Metasploit’s module, Search Engine Domain Email Address Collector. This module uses Google, Bing and Yahoo to create a list of valid email addresses for …

Host discovery, Metasploit

Host Discovery with Metasploit

Host discovery is the process of identifying live hosts on a network. Alive is considered a host that responds to ping or have a particular port open. ARP Scanning ARP (Address Resolution Protocol) is a protocol for resolution of network layer addresses into link layer addresses. The ARP protocol is designed to allow it to …

Metasploit

Working with Metasploit scanners

Metasploit provides us with many scanning modules. To list the available scanners from within msfconsole, type info auxiliary/scanner/info auxiliary/scanner/ or search scannersearch scanner and hit tab to discover that MSF has over 240 scanners available.   HTTP Scanning There are many http scanners available in Metasploit. We are going to use the http_version scanner. Select …

Metasploit

Port scanning with Metasploit auxiliary

Although nmap is the de-facto port scanner and has become a synonym to port scanning, Metasploit offers its own port scanners. These port scanners are available in auxiliary modules. In msfconsole execute search portscansearch portscan to see a list of all available portscanners in MSF. To select one of the available port scanners, let’s say …