MacOSX Capitan EI 安装 Metasploit Framework 与 Armitage

  • 内容
  • 评论
  • 相关

OSX Capitan EI安装 msf 与 armitage

需要的依赖:

rvm  ruby版本控制

ruby (自带的是2.0.0兼容性不是很好)

gem

Homebrew

bundle

xcode 6  编译依赖

jdk8 用于启动armitage

 

Xcode

首先必须安装 安装所有的编译支持

Mac App Store – Xcode

安装xcode sdk

安装xcode开发者工具:

$xcode-select --install

 

 

 

 

Java

Ensure that the latest versions of the Java 8 JRE and JDK are installed.

$wget http://download.oracle.com/otn-pub/java/jdk/8u40-b27/jdk-8u40-macosx-x64.dmg

 

Homebrew

$ruby -e "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"

验证是否安装正确

brew doctor

设置偏好路径

echo PATH=/usr/local/bin:/usr/local/sbin:$PATH >> ~/.bash_profile

 

source ~/.bash_profile

 

brew tap homebrew/versions
brew tap homebrew/dupes

 

 

Homebrew Installs

 

Nmap

用homebrew安装nmap

brew install nmap

 

Install Ruby 2.1.5

安装2.1.5+的ruby版本

brew install homebrew/versions/ruby21

验证ruby版本

ruby –v

 

 

PostgreSQL

安装postgreSQL 需要配置msf的 数据库

brew install postgresql --without-ossp-uuid

 

初始化postgre数据库

initdb /usr/local/var/postgres

配置

mkdir -p ~/Library/LaunchAgents

 

cp /usr/local/Cellar/postgresql/9.4.1/homebrew.mxcl.postgresql.plist ~/Library/LaunchAgents/

 

 

运行PostgreSQL :

launchctl load -w ~/Library/LaunchAgents/homebrew.mxcl.postgresql.plist

创建我们的msf的postgre数据库

createuser msf -P -h localhost
createdb -O msf msf -h localhost

 

VNCViewer

载荷攻击windows操作系统 需要配置一下vncViewer  安装方法就不赘述了!

echo '#!/usr/bin/env bash'>> /usr/local/bin/vncviewer
echo open vnc://\$1 >> /usr/local/bin/vncviewer
chmod +x /usr/local/bin/vncviewer

 

 

开始安装msf

安装这些依赖

gem install pg sqlite3 msgpack activerecord redcarpet rspec simplecov yard bundler

切换local share目录 从github上克隆msfproject-master

cd /usr/local/share/
git clone https://github.com/rapid7/metasploit-framework.git
cd metasploit-framework
for MSF in $(ls msf*); do ln -s /usr/local/share/metasploit-framework/$MSF /usr/local/bin/$MSF;done
sudo chmod go+w /etc/profile
sudo echo export MSF_DATABASE_CONFIG=/usr/local/share/metasploit-framework/config/database.yml >> /etc/profile

 

安装其它运行依赖项

bundle install

 

保存一下 msf的  database.yml 的配置   可以手动用 database.yml.simple替换掉

vim /usr/local/share/metasploit-framework/config/database.yml

内容如下: 帐号我们之前默认的msf 密码就是 自己设置的密码 安装postgre的时候

production:
  adapter: postgresql
  database: msf
  username: msf
  password: icefox
  host: 127.0.0.1
  port: 5432
  pool: 75
  timeout: 5

 

定制快捷配置

source /etc/profile
source ~/.bash_profile

 

 

配置ok ! 跑一下 go go go

./msfconsole

 

也可以用 db_status 测一下postgre是否启用

 

[*] postgresql connected to msf

OSX Capitan EI 安装 Armitage

 

brew install pidof
curl -# -o /tmp/armitage.tgz http://www.fastandeasyhacking.com/download/armitage-latest.tgz
tar -xvzf /tmp/armitage.tgz -C /usr/local/share
bash -c "echo \'/usr/bin/java\' -jar /usr/local/share/armitage/armitage.jar \$\*" > /usr/local/share/armitage/armitage
perl -pi -e 's/armitage.jar/\/usr\/local\/share\/armitage\/armitage.jar/g' /usr/local/share/armitage/teamserver

 

 

配置快捷启动

ln -s /usr/local/share/armitage/armitage /usr/local/bin/armitage
ln -s /usr/local/armitage/teamserver /usr/local/bin/teamserver

 

sudo –E armitage
sudo –E msfconsole

 

 

评论

4条评论
  1. Kylin

    你好,我安裝到需要添加gem需求(gem install pg sqlite3 msgpack activerecord redcarpet rspec simplecov yard bundler)的時候,終端無法下載,出現了很多無法下載的錯誤信息,請求下怎麼解決!?
    顯示的信息如下:
    bogon:~ Kylin$ gem install pg sqlite3 msgpack activerecord redcarpet rspec simplecov yard bundler
    ERROR: Could not find a valid gem 'pg' (>= 0), here is why:
    Unable to download data from https://rubygems.org/ - Errno::ECONNRESET: Connection reset by peer - SSL_connect (https://rubygems.org/latest_specs.4.8.gz)
    ERROR: Could not find a valid gem 'sqlite3' (>= 0), here is why:
    Unable to download data from https://rubygems.org/ - Errno::ECONNRESET: Connection reset by peer - SSL_connect (https://rubygems.org/latest_specs.4.8.gz)
    ERROR: Could not find a valid gem 'msgpack' (>= 0), here is why:
    Unable to download data from https://rubygems.org/ - Errno::ECONNRESET: Connection reset by peer - SSL_connect (https://rubygems.org/latest_specs.4.8.gz)
    ERROR: Could not find a valid gem 'activerecord' (>= 0), here is why:
    Unable to download data from https://rubygems.org/ - Errno::ECONNRESET: Connection reset by peer - SSL_connect (https://rubygems.org/latest_specs.4.8.gz)
    ERROR: Could not find a valid gem 'redcarpet' (>= 0), here is why:
    Unable to download data from https://rubygems.org/ - Errno::ECONNRESET: Connection reset by peer - SSL_connect (https://rubygems.org/latest_specs.4.8.gz)
    ERROR: Could not find a valid gem 'rspec' (>= 0), here is why:
    Unable to download data from https://rubygems.org/ - Errno::ECONNRESET: Connection reset by peer - SSL_connect (https://rubygems.org/latest_specs.4.8.gz)
    ERROR: Could not find a valid gem 'simplecov' (>= 0), here is why:
    Unable to download data from https://rubygems.org/ - Errno::ECONNRESET: Connection reset by peer - SSL_connect (https://rubygems.org/latest_specs.4.8.gz)
    ERROR: Could not find a valid gem 'yard' (>= 0), here is why:
    Unable to download data from https://rubygems.org/ - Errno::ECONNRESET: Connection reset by peer - SSL_connect (https://rubygems.org/latest_specs.4.8.gz)
    ERROR: Could not find a valid gem 'bundler' (>= 0), here is why:
    Unable to download data from https://rubygems.org/ - Errno::ECONNRESET: Connection reset by peer - SSL_connect (https://rubygems.org/latest_specs.4.8.gz)
    bogon:~ Kylin$

  2. Cary

    遇到的问题:
    1. postgresql 的路径需要注意,新版本的版本号与文中不一致,应该提醒读者;
    2. 下载msg依赖包时,需要 sudo gem sources --add https://ruby.taobao.org/ --remove https://rubygems.org/
    并使用 gem source -l
    # 请确保只有 ruby.taobao.org

    • ICEFOX

      @Cary 是的,之前转载的这篇文章里有部分还是需要墙以及依赖问题的。。感谢休正