MSF Console
MSF console is the most popular part of the Metasploit Frameworks. It is one of the framework’s most flexible, featured, and well-supported tools. MSF console provides an all-in-one interface to almost every option and setting available in the Framework. You can use the MSF console to do almost everything, including launching exploits, loading auxiliary modules, performing enumerations, creating listeners, or running mass exploitation to an entire network. Although the Metasploit Framework is almost changing, the basic way of using these interfaces and commands remains constant. By mastering the basics of the MSF console you will be able to keep up with any changes.
Starting MSF console: To launch the MSF console, enter msfconsole in the command line:
msfconsole
to access the msfconsole help files, enter help followed by the command you want to explore more, for example in the picture below we have viewed the help command with connect command, which allows us to communicate with a host. the results of help lists usage, description of the tool, and the various options flags.
help connect
Some basic commands to get familiar with the MSF console are :
1. Msfupdate: to update Metasploit Framework to its latest version, this command can be used. new versions of msfconsole don’t support this command in the alternative if this command you can use apt-get update or apt-get upgrade.
2. help: to get the list of commands available with msfconsole help command can be used, this will list all the commands that can be used with this framework like core commands, and database backend commands.
3. info: to get information about a specific exploit or module this command is used.
4. Search name: to search for specific exploits and modules this command is used.
5. Show exploits: to get all exploits listed available in the Metasploit framework this command is used.
6. Exit: this command is used to exit from msfconsole.
How to Use Metasploit’s Interface
Metasploit itself is a free open-source software, with many contributors in the security community. It supports Vulnerability Research, Exploits development, and also the creation of custom security tools. Metasploit Frameworks are widely used for pen testing and other security purposes. Metasploit offers more than one interface to its underlying functionality, including console, command line interfaces, and graphical interfaces. In addition to these interfaces of Metasploit, utilities provide direct access to functions that are normally offered by Metasploit Framework. these utilities can be invaluable for the exploit development and the situation where you do not need the flexibility of the entire framework.