Hi, I have Metasploit Pro on Windows 10. I started with a Web Scan of a website. I got 2 websites crawled but no website vulnerabilities. Then I did a Scan of the IP's from the website IP going up to (-.255.) I got 30 Hosts and 51 Services. Mostly 80 and 443. I did get a lot of info on the OS's used. Then I ran exploit on all the IP's. It came up with a lot of errors (red) and no Sessions. I tried a Module of Java Exploit but it says "port 8080 is already in use." I read online to stop and start Metasploit to clear port 8080, but it didn't work. Does anyone know of any PDF's or instructions on how to use Metasploit Pro? All I see is Metasploit Framework. Some of the Exploits seemed to work (there were no "red" errors), but no Sessions. Some say "Manual cleanup is required", so that sounds good. What am I looking for while Exploiting? I am going to try Bruteforce next. I'll report back. Please reply with instructions on how to use Pro. Or the basics of what I'm supposed to be doing. (Attacking a website with a login on it.) Thanks!
Posted by Mike Held about a year ago
I am able to enter running meterpreter session without any problems, but when I try to execute any commands like ps, an error message appears saying "No such command". Maybe, does it have something to do with the exploit that I used? Thanks
Posted by Marek Miklenda about a year ago
My understanding is that bot need to be installed. One place suggests using two computers for this. I can do that but wonder if it's really necessary or even somehow "better" to work with. My objective is to do a fairly infrequent external pen test. If they are installed on the same machine then what things might one need to watch out for and/or do to tailor things?
Posted by Fred Marshall about a year ago
Hello Experts, I have multiple sites defined in nexpose with assets and asset groups in them. Now I am trying to write an sql query in order to fetch fields like Vulnerability name , cvss score of all the vulnerabilities found in all the sites in the last most scan, we have scheduled scans for our sites. Your help is highly appreciated. Thanks
Posted by Frank about a year ago
I can access localhost anymore after windows update. Running Windows 10 Pro 16 Gig Ram 64bit Can you reinstall the software? Will that clear the database/project?
Posted by Stan Spears about a year ago
I was creating a spreadsheet to use the algorithm identified on the below page so I can better estimate the scan time for my sites and readjust their schedules. I noticed, however, that something is wrong in the KB article. The algorithm states: 105 (number live assets) X 65535 (number of ports to be scanned) X 1 (maximum retries) / 200 (minimum packets per second) / 60 seconds = 1146.86 minutes to scan However, the math actually returns 573.43, which would've been the result if you multiple by 200 packets per second, divided by 2. So is the stated algorithm correct with an incorrect answer, or is the answer correct with an incorrect algorithm? https://kb.help.rapid7.com/docs/measuring-scan-performance-and-time
Posted by David Howell about a year ago
after lots of difficulties i able to install nexpose into my kali machine, and was able to login with username and password and was able to create site only. later i went for a break and came back to login into web console i.e. 127.0.0.1:3780 its says username and password is invalid. on the background scrip running saying password change detected. go and check /opt/rapid7/nexpose/nsc/logs/collecter.logs i am the only one who has the credential to access the os and later who nexpose how can be changed itself.?? is this nexpose vulnerable? some one hacked it? or what ?
Posted by Himanshu Dua about a year ago
Hi, when i try to add Office 365 as data source, i've got an error. After i click begin button, i am redirect to Office 365 athorization page. When i click the confirm button, i redirect to a rapid7 webpage that says: "Whoops! An error has occured". I found nothing relevant on collector's log.. What culd be the problem?
Posted by Luca about a year ago
I've gotten NT AUTHORITY\SYSTEM on a system by migrating into lsass.exe but when I run the command "getprivs", as a result I get a "Operation Timed Out" even when UAC is disabled I don't understand why ? Any information will be greatly appreciated
Posted by Spectre about a year ago
I am trying to set up Endpoint monitoring in Scan Mode for one of our new sites. The collector sees a number of clients, but all of them are returning an error of "NO_DATA" I can't seem to find any resources on how to troubleshoot this issue.
Posted by Trey.Bushart about a year ago
Is everyone aware that Nexpose will not detect the Apache Struts 2 vulnerability that bit Equifax? We've got a vulnerable machine stood up and no discovery, even with a credentialed scan. They say its a "bug". Pretty big bug I would say.
Posted by Fred Smith about a year ago
I'm trialling InsightIDR; have set up various Data Collection sources; one being O365. Tenant ID all in and it initially worked; however it now keeps stating "Failed to fetch events from office365". I can stop/start and the status goes Green however then turns swiftly back to failed. And the latest entry in the 'raw log' stays the same from this point forward. Have tried editing and resubmitting the user creds. No joy. I tried this the past few days on a Linux box; this morning I've deployed a Windows box and the same issue occurs. Thanks
Posted by Neil M about a year ago
Does anyone have an example for me? I've searched and can't find anything. I am getting this in the logs: Invalid MAC address file, no MAC addresses will be trusted: /opt/rapid7/nexpose/plugins/java/1/NetworkScanners/1/filename.txt
Posted by MS about a year ago