sf > use auxiliary/scanner/portscan/tcp msf auxiliary(tcp) > show options
Module options (auxiliary/scanner/portscan/tcp):
Name Current Setting Required Description ---- --------------- -------- ----------- CONCURRENCY 10 yes The number of concurrent ports to check per host PORTS 1-10000 yes Ports to scan (e.g. 22-25,80,110-900) RHOSTS yes The target address range or CIDR identifier THREADS 1 yes The number of concurrent threads TIMEOUT 1000 yes The socket connect timeout in milliseconds
msf auxiliary(tcp) > set RHOSTS 112.XX.XX.XX RHOSTS => 112.XX.XX.XX msf auxiliary(tcp) > set THREADS 20 THREADS => 20 msf auxiliary(tcp) > run
当扫描完成之后,可以开始自动化攻击。
1 2 3 4 5 6 7 8 9 10 11
msf auxiliary(tcp) > db_autopwn -t -p -r -e [-] The db_autopwn command is DEPRECATED [-] See http://r-7.co/xY65Zr instead [-] [-] Warning: The db_autopwn command is not officially supported and exists only in a branch. [-] This code is not well maintained, crashes systems, and crashes itself. [-] Use only if you understand it's current limitations/issues. [-] Minimal support and development via neinwechter on GitHub metasploit fork. [-] [*] Analysis completed in 41 seconds (0 vulns / 0 refs)