Adding exploit to Metasploit 3.1
Well I know this is very simple but most of us including me were really confused while adding an exploit or updating svn in Metasploit. Adding an exploit in Metasploit version 2.X was simple. It was as simple as adding .pm exploit file to exploit folder. Now Metasploit has migrated to ruby. Just adding .rb file to exploit does not solve the purpose. You can follow below steps. It worked in my case.
1. From the Start menu, open Programs, Metasploit 3, CMD Shell
2. Enter “cd %LOCALAPPDATA%
3. If this fails, enter “cd %APPDATA%”
4. Enter “move msf3 msf3.old”
5. Enter “svn co https://metasploit.com/svn/framework3/trunk/ msf3″
co stands for checkout. After you type this command it will prompt to accept the SSL certificate. Type ‘t’ or ‘p’ to accept the certificate temporarily for permanently. It will then download the files from trunk directory.
6. Wait for this update to complete
7. The MSFGUI and MSFWEB links now use the SVN tree
Hurray and now you can see newly added exploit!!!
Similar Posts you might be interested in:
- Metasploit 3.2 Offers More ‘Evil Deeds’
- Metasploit Framework 3.2 Released
- Writing malicious macros using metasploit
Penetration Testing | w0lf | November 13, 2008
Hi wolf,
I couldn’t do the fourth step, as it appears this message”the system cannot find the file specified”
Can you please help me with this problem?
Sami
I tried to add an Apache module mod_rewrite LDAP protocol Buffer Overflow exploit to the .tar archive msf32 in the appropriate category, but when reloading the metasploit web, it appears it doesn’t automatically discover on windows OS. Anyone know how to go about adding exploits not distributed from the metasploit site?