New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
MacOS installation and quick start needs clarity #13947
Comments
It's explained a bit more in the manual instructions right below it on that page, though I could see maybe separating the info on what to do next, and the installation. I thought it added symlinks to /usr/local/bin or modified your shell's path, but maybe that doesn't work with the new Catalina default of zsh. It escalates privileges in the same way that double-clicking the installer would graphically prompt you instead if you downloaded and installed manually: https://github.com/rapid7/metasploit-framework/wiki/Nightly-Installers#macos-manual-installation Hope that at least helps in the short term. |
I just moved the part that describes the initial path to msfconsole higher so it's easier to notice. I'm going to bet since the first run sets up your PATH, that there may need to be a zsh update to make it configure that environment too. |
For added context i'm on Mojave. I'm not using zsh.
|
It seems most of the installation logic is supposed to occur after the native installation process of the .pkg file through the post-install script (postinst): #!/bin/sh
#
# Perform necessary metasploit setup steps
# after package is installed.
#
BINS="msfbinscan msfconsole msfd msfdb msfelfscan msfmachscan msfpescan msfrop msfrpc msfrpcd msfupdate msfvenom"
if [ -x /usr/sbin/update-alternatives -o -x /usr/bin/update-alternatives ] ; then
for BIN in $BINS; do
update-alternatives --install /usr/bin/$BIN $BIN /opt/metasploit-framework/bin/$BIN 100
done
echo "Run msfconsole to get started"
else
echo "Run /opt/metasploit-framework/bin/msfconsole to get started"
fi
exit 0
The installation process itself seems to unnecessarily require sudo simply to write its files in system-wide locations. It's quite a poor design decision. |
@RA80533
Download and install the package manually didn't help either! macOS 13.2 Ventura |
🎉 This helped me: https://gist.github.com/xl7dev/a19da077792c5894529f [Manuall Installation] |
I am trying to install on MacOS. I am using the nightly installer from: https://github.com/rapid7/metasploit-framework/wiki/Nightly-Installers#installing-metasploit-on-linux--macos
Why does this installer need my root password? Thats incredibly sketchy for a "just curl this url" installer. The installer looks like it completes successfully but I then have no idea what it installed or where it installed to.
At this point i'm not sure what to do next? I looked into some other guides and i'm supposed to have some cli tools for metasploit like and
msf
command. but nothings there?This leaves me very concerned because I just executed some arbitrary script over curl that had root access and have no idea what it did. good thing I don't need this machine I guess.
The text was updated successfully, but these errors were encountered: