Can we do same for the following john function with wordlist in metasploit?

[flamecopper]

john --wordlist=Passwords.txt --format=NT hashdump

As above

[bcoles]

Take a look at the crack_* modules in modules/auxiliary/analyze/.

These modules use John the Ripper or Hashcat to crack hashes stored in the database (viewable with the creds command) and allow specifying a wordlist with the CUSTOM_WORDLIST option.

For your command above, you would want to use something like this:

msf6 > use auxiliary/analyze/crack_windows 
msf6 auxiliary(analyze/crack_windows) > options

Module options (auxiliary/analyze/crack_windows):

   Name                  Current Setting  Required  Description
   ----                  ---------------  --------  -----------
   CONFIG                                 no        The path to a John config file to use instead of the default
   CRACKER_PATH                           no        The absolute path to the cracker executable
   CUSTOM_WORDLIST                        no        The path to an optional custom wordlist
   FORK                  1                no        Forks for John the Ripper to use
   INCREMENTAL           true             no        Run in incremental mode
   ITERATION_TIMEOUT                      no        The max-run-time for each iteration of cracking
   KORELOGIC             false            no        Apply the KoreLogic rules to John the Ripper Wordlist Mode(slower)
   LANMAN                true             no        Crack LANMAN hashes
   MSCASH                true             no        Crack M$ CASH hashes (1 and 2)
   MUTATE                false            no        Apply common mutations to the Wordlist (SLOW)
   NORMAL                true             no        Run in normal mode (John the Ripper only)
   NTLM                  true             no        Crack NTLM hashes
   POT                                    no        The path to a John POT file to use instead of the default
   USE_CREDS             true             no        Use existing credential data saved in the database
   USE_DB_INFO           true             no        Use looted database schema info to seed the wordlist
   USE_DEFAULT_WORDLIST  true             no        Use the default metasploit wordlist
   USE_HOSTNAMES         true             no        Seed the wordlist with hostnames from the workspace
   USE_ROOT_WORDS        true             no        Use the Common Root Words Wordlist
   WORDLIST              true             no        Run in wordlist mode


Auxiliary action:

   Name  Description
   ----  -----------
   john  Use John the Ripper


msf6 auxiliary(analyze/crack_windows) > set wordlist true
wordlist => true
msf6 auxiliary(analyze/crack_windows) > set CUSTOM_WORDLIST Passwords.txt
CUSTOM_WORDLIST => Passwords.txt
msf6 auxiliary(analyze/crack_windows) >