☠️ ζHUB

Metasploit Framework

Created: Mar 13, 2025
Updated: Mar 15, 2025

Metasploit Framework is an open source platform that supports vulnerability research, exploit development, and the creation of custom security tools.

Base Files

By default, all base files related to the Metasploit Framework are located in /usr/share/metasploit-framework on most security-focused distributions (e.g., Kali, ParrotOS).
These files are organized into different parts that enable msfconsole to function properly.

Searching For Modules

The Msfconsole offers a powerful search functionality. If you’re looking for a specific module, you can use specific tags to find the most suitable one for your target.

For more information type help search inside msfconsole.

  • General search:

  • Specific search:

Databases

The Msfconsole has built-in support for the PostgreSQL database system. It is used to track results during complex machine assessments that generate a large amount of data.

For more information type help database inside msfconsole.

  • Start and Initialize database:

    # Start PostgreSQL
sudo systemctl start postgresql
 
# Initialize database
sudo msfdb init

  • Workspaces:

    # List workspaces
msf > workspace -l
 
# Switch workspace
msf > workspace <name>
 
# Added workspace
msf > workspace -a <name>
 
# Delete workspace
msf > workspace -d <name>

  • Import Results:

    # Import result
msf > db_import filename.xml

  • Export Results:

    # Export result
msf > db_export -f xml filename.xml

  • Hosts:

  • Services:

  • Loots:

  • Credentials:

Import exploit from ExploitDB

Sometimes, not all exploits are available in Metasploit. This could mean that Metasploit is not up to date or that the exploit is not included in the official release.
However, the specific exploit we are looking for might be available in ExploitDB as a Metasploit module, which we can import into Metasploit.

  • Search for the exploit and place it in the appropriate location.

  • Load the exploit in Metasploit

Backlinks