8 min
Metasploit
Metasploit 3.0 Automated Exploitation
A recurring theme in my presentations about Metasploit 3.0 is the need for
exploit automation. As of tonight, we finally have enough code to give a quick
demonstration :-)
Metasploit 3 uses the ActiveRecord
[http://wiki.rubyonrails.org/rails/pages/ActiveRecord] module (part of RoR
[http://rubyonrails.org/]) to provide an object-oriented interface to an
arbitrary database service. Database support is enabled by installing RubyGems
[http://www.rubygems.org/], ActiveRecord ("gem install activerec
4 min
Metasploit
Post-Exploitation Fun in Metasploit 3.0
So what does it mean when we talk about all the cool automation support that
Metasploit 3.0 has? Well, the answer is fairly broad. It means you can implement
plugins and other tools that can be used to extend and automate a number of
features included in the framework. By virtue of this fact, it means that you
can extend and automate one of the areas that I personally find the most
interesting: post-exploitation payloads. Spoonm and I recently completed a tour
of duty describing some of the coo