Metasploit for website pentest

Post author:jonathansblog
Post published:February 13, 2019
Post category:jonathansblog / Kali Linux / Metasploit / Pentest
Post comments:1 Comment

service postgreqsql start

if this is the first time you are running metasploit, run the following command to create the database schema for you:

msfdb init

if it is not your first time, start your postgesql service as you will already have the database schema in place.

service postgresql start

Then you can start metasploit using the msfconsole command from a regular terminal

Pages: 1 2 3 4 5 6 7 8 9 10 11 12

Tags: Address, App, Book, Command, Connect, Default, Directory, Display, Error, File, Image, Index, Launch, Link, List, Local, metasploit, Mini, Multi, Multiple, Php, Scan, Screen, Server, Terminal, Text, Time, Tools, Tutorial, Url, Virtual, Vulnerability, Web, Website, Work

This Post Has One Comment

Will Meek September 10, 2019 Log in to Reply

Great writeup Jonathan!

Only caveat I found was that the url needed to be an IP, even though sites are resolved to IPs.

And File/Dir testing at the ‘404’ stage takes forever! :)

Leave a ReplyCancel reply