mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-06-11 05:34:55 +03:00
mukul975
59 lines
2.6 KiB
Markdown
59 lines
2.6 KiB
Markdown
# Workflows - Metasploit Vulnerability Exploitation
|
|
|
|
## Workflow 1: Vulnerability Validation Pipeline
|
|
|
|
```
|
|
┌───────────────┐ ┌───────────────┐ ┌───────────────┐
|
|
│ Import Scan │──>│ Filter Top │──>│ Search MSF │
|
|
│ Results to DB │ │ Priority CVEs │ │ Modules │
|
|
└───────────────┘ └───────────────┘ └───────────────┘
|
|
│
|
|
┌─────────────────────────────────────┘
|
|
v
|
|
┌───────────────┐ ┌───────────────┐ ┌───────────────┐
|
|
│ Run `check` │──>│ Exploit if │──>│ Document │
|
|
│ Command │ │ Authorized │ │ Evidence │
|
|
└───────────────┘ └───────────────┘ └───────────────┘
|
|
│
|
|
v
|
|
┌───────────────┐ ┌───────────────┐
|
|
│ Update Risk │──>│ Prioritize │
|
|
│ Assessment │ │ Remediation │
|
|
└───────────────┘ └───────────────┘
|
|
```
|
|
|
|
## Workflow 2: Patch Verification
|
|
|
|
```
|
|
Patch Deployed
|
|
│
|
|
├──> Re-run `check` command against patched host
|
|
│ │
|
|
│ ├──> NOT VULNERABLE → Patch verified ✓
|
|
│ └──> STILL VULNERABLE → Patch failed ✗
|
|
│ │
|
|
│ └──> Escalate to remediation team
|
|
│
|
|
└──> Re-run auxiliary scanner
|
|
│
|
|
├──> No findings → Remediation confirmed
|
|
└──> Findings persist → Incomplete patch
|
|
```
|
|
|
|
## Workflow 3: Metasploit Module Selection
|
|
|
|
```
|
|
CVE Identified
|
|
│
|
|
├──> search cve:CVE-YYYY-NNNNN
|
|
│ │
|
|
│ ├──> Exploit module found → Use for validation
|
|
│ ├──> Auxiliary scanner found → Use for bulk check
|
|
│ └──> No module found → Manual validation required
|
|
│
|
|
└──> Alternative: search for related modules
|
|
│
|
|
├──> search type:exploit platform:windows target:smb
|
|
└──> search type:auxiliary name:scanner
|
|
```
|