Information Gathering using Metasploit

Metasploit Framework (MSF) is one of the most widely used tools for penetration testing, providing powerful attack simulations, security assessment management, and more.

It assumes that you already have MetaSploit installed, or that you are running Kali / backtrack Linux. if not Installed,you can download from here https://www.metasploit.com/

Lets Start With Information Gathering using Metasploit

Msfconsole

This is msfconsole. Msfconsole is the main interface to MetaSploit. There are GUI interfaces (armitage), and a web interface too (websploit). With msfconsole, you can launch exploits, create listeners, configure payloads etc.

Whois

It is an important that can be used to collect information about a target. This would give information about the :-

• Domain ID
• Domain name
• Created On
• Last Updated On
• Expiration Date
• Registrant Name
• Registrant Street1
• Admin Name
• Name Server
• IP Addresses
• Phone numbers
• Network services and applications

whois http://www.techtrick.in

Nslookup

It is a network administration tool for querying the Domain Name System (DNS) to obtain domain name or IP address mapping or any other specific DNS record.

It is also used to troubleshoot DNS related problems. This article provides few examples on using the nslookup command.

nslookup

NMAP

It is a penetration testing and network information gathering tool which was use by most of the IT administrators around the world. NMAP uses are more wide and we can easily gather the devices and the Network peripherals around you.

nmap -sS -Pn [Server I.P]

I hope you enjoyed this article.