Intermediate

Scanning and Reconnaissance with Metasploit

scanning · reconnaissance · metasploit · systems · cybersecurity · networking · security · enumeration · port · service · vulnerability · command · database · msf.

This reference manual walks through a full network reconnaissance and exploitation-assessment workflow using the Metasploit Framework, from initial host discovery through port scanning, service enumeration, vulnerability identification, exploitation, and centralized results tracking with the Metasploit database. The lab environment used throughout is a Kali Linux attacking host on the 172.31.37.0/24 network, with a Metasploitable 2 target machine at 172.31.37.25.

The Metasploit Framework is a modular and versatile penetration testing platform that allows security professionals to exploit vulnerabilities, test systems, and gather information about target networks. It provides a powerful command-line interface that enables testers to run several types of scans, discovery tools, and exploitation modules to conduct a thorough penetration test.

At its core, Metasploit is built on a modular architecture. It organizes tools, exploits, and auxiliary modules into individual components that can be mixed and matched as needed. Whether you are scanning a target, attempting exploitation, or conducting post-exploitation activities, Metasploit has a module for every phase of a test.

Sign in to read this course

A free account unlocks all 514 courses. 20 are readable without one.

What's inside

6 sections
  1. 1 Table of Contents
  2. 2 Module 1: Introduction to Scanning with Metasploit
  3. 3 Module 2: Port Scanning and Service Enumeration
  4. 4 Module 3: Vulnerability Scanning and Exploitation Potential Assessment
  5. 5 Module 4: Metasploit's Vulnerability Database (MSF Vuln DB)
  6. 6 Summary

Interested in this course?

Contact us to book it or get a custom training plan for your team.