Metasploi update and reloading db_autopwn BT5 r2

[tantricmeta]

what about connecting with mysql

[androw3349]

Ehy I still have a problem, my metasploit seems to have no db connected :\
I tried to db_connect postgersql but the answer was [-] No database driver has been specified
Then I did db_driver and he simply told me "[-] Unknown command: db_driver."
It seems I have a situation with this funny guy...

EDIT: everything works fine, it seems you just have to run it from the bin or the menu (wich is the same) and not from the perl doc.

i had the same **** problem now can you tell me what you did ?

[anoniem]

What is the difference with armitage?

[hannah]

Am not trying to steal this thread. I am just learning metasploit from here:
http://www.offensive-security.com/me...ring_Databases


My metasploit is updated as of today..

Code:

       =[ metasploit v4.3.0-release [core:4.3 api:1.0]
+ -- --=[ 839 exploits - 471 auxiliary - 142 post
+ -- --=[ 250 payloads - 27 encoders - 8 nops
       =[ svn r15202 updated today (2012.04.30)

msf > db_driver
[-] Unknown command: db_driver.
msf >

Can someone please help here. How can I please get connected to PostgreSQL? I did read this thread..and the suggestions in page 1:

"EDIT: everything works fine, it seems you just have to run it from the bin or the menu (wich is the same) and not from the perl doc." I could not quite follow it however.

Thanks all for the help.
Regards

[zimmaro]

hi,
the command db_driver in the latest versions of Metasploit has been "abandoned" and BT5-r2 if you NOT touched anything ,the connections to postgresql is "automatic" try the command: db_status

Can someone please help here. How can I please get connected to PostgreSQL? I did read this thread..and the suggestions in page 1:
bye

[hannah]

Apologies for overlooking and thanks a lot for the help

[nqhuy]

Hi everyone

Disclaimer : there is a very good reason why db_autopwn is deprecated , so i am not trying to fix metasploit , this post is ONLY for basic information !

If you wish to have it and use it again is totally on your own risk and responsibility !

So, first , notice that if you do svn up in msfconsole it wont work, this because metasploit is in /opt/ , so you should do this to update:

root@bt:~# cd /opt/metasploit/msf3
root@bt:/opt/metasploit/msf3# svn update
At revision 14843.
root@bt:/opt/metasploit/msf3#

Now db_autopwn :

I uploaded the rb file here : http://www.mediafire.com/?9cwwdeaa1jc4t55

Download it and move it into /opt/metasploit/msf3/plugins

Reboot BT5

Then make sure the database is connected , do the following:

root@bt:~# msfconsole

, ,
/ \
((__---,,,---__))
(_) O O (_)_________
\ _ / |\
o_o \ M S F | \
\ _____ | *
||| WW|||
||| |||


=[ metasploit v4.3.0-dev [core:4.3 api:1.0]
+ -- --=[ 810 exploits - 452 auxiliary - 135 post
+ -- --=[ 246 payloads - 27 encoders - 8 nops
=[ svn r14843 updated today (2012.03.02)

msf > db_status[*] postgresql connected to msf3dev
msf > load db_autopwn[*] Successfully loaded plugin: db_autopwn
msf >


Now you should be good to go !
Good luck
GD

Hi ghostdog67,

I did exactly as you guide and loaded db_autopwn success.
But when I use "db_autopwn -e", there is a issue as following:

Error while running command db_autopwn: can't convert Fixnum into String

Call stack:
/opt/metasploit/msf3/plugins/db_autopwn.rb:190:in `+'
/opt/metasploit/msf3/plugins/db_autopwn.rb:190:in `block (3 levels) in cmd_db_autopwn'
/opt/metasploit/msf3/plugins/db_autopwn.rb:188:in `each'
/opt/metasploit/msf3/plugins/db_autopwn.rb:188:in `block (2 levels) in cmd_db_autopwn'
/opt/metasploit/msf3/lib/msf/core/module_manager.rb:243:in `call'
/opt/metasploit/msf3/lib/msf/core/module_manager.rb:243:in `block in each_module_list'
/opt/metasploit/msf3/lib/msf/core/module_manager.rb:216:in `each'
/opt/metasploit/msf3/lib/msf/core/module_manager.rb:216:in `each_module_list'
/opt/metasploit/msf3/lib/msf/core/module_manager.rb:134:in `each_module'
/opt/metasploit/msf3/plugins/db_autopwn.rb:184:in `block in cmd_db_autopwn'
/opt/metasploit/msf3/plugins/db_autopwn.rb:183:in `each'
/opt/metasploit/msf3/plugins/db_autopwn.rb:183:in `cmd_db_autopwn'
/opt/metasploit/msf3/lib/rex/ui/text/dispatcher_shell.rb:380:in `run_command'
/opt/metasploit/msf3/lib/rex/ui/text/dispatcher_shell.rb:342:in `block in run_single'
/opt/metasploit/msf3/lib/rex/ui/text/dispatcher_shell.rb:336:in `each'
/opt/metasploit/msf3/lib/rex/ui/text/dispatcher_shell.rb:336:in `run_single'
/opt/metasploit/msf3/lib/rex/ui/text/shell.rb:199:in `run'
/opt/metasploit/msf3/msfconsole:140:in `<main>'

I am a newbie, so pls help me to fix this
Thanks

[ghostdog67]

You must have screwed up somewhere !! i suggest you repeat the process .
Here is my result:

msf > db_autopwn -e
[-]
[-] Warning: The db_autopwn command is not officially supported and exists only in a branch.
[-] This code is not well maintained, crashes systems, and crashes itself.
[-] Use only if you understand it's current limitations/issues.
[-] Minimal support and development via neinwechter on GitHub metasploit fork.
[-] [*] Usage: db_autopwn [options]
-h Display this help text
-t Show all matching exploit modules
-x Select modules based on vulnerability references
-p Select modules based on open ports
-e Launch exploits against all matched targets
-r Use a reverse connect shell
-b Use a bind shell on a random port (default)
-q Disable exploit module output
-R [rank] Only run modules with a minimal rank
-I [range] Only exploit hosts inside this range
-X [range] Always exclude hosts inside this range
-PI [range] Only exploit hosts with these ports open
-PX [range] Always exclude hosts with these ports open
-m [regex] Only run modules whose name matches the regex
-T [secs] Maximum runtime for any exploit in seconds

msf >


Good luck
GD

Ps: this might help: http://www.ruby-forum.com/topic/3762212#1049630

[nqhuy]

Thanks for your feedback, ghostdog67.
Regards.