Posts tagged Metasploit

2 min Metasploit Weekly Wrapup

Metasploit Wrapup: Nov. 17, 2017

This is a time of year when many folks in the U.S. reflect on things in their lives that they are thankful for. There’s also usually a turkey involved, but we figured we’d pardon the bird [https://en.wikipedia.org/wiki/National_Thanksgiving_Turkey_Presentation] this wrapup and just focus on things we Metasploit folks here at Rapid7 are thankful for. Community Contributors We are SUPER THANKFUL for our community contributors [https://github.com/rapid7/metasploit-framework/graphs/contributors] an

Read Full Post

4 min Penetration Testing

Metasploit MinRID Option

We’ve added a new option to the smb_lookupsid Metasploit module [https://www.rapid7.com/db/modules/auxiliary/scanner/smb/smb_lookupsid]. You can now specify your starting RID. Wait, What Does This Module Do Again? As a penetration tester, one of the first things I try to do on an internal network is enumerate all of the domain users so that I can perform login attacks against them. It would be a noteworthy risk if we could do that anonymously, because that means that any malicious actor who can

Read Full Post

2 min Metasploit Weekly Wrapup

Metasploit Wrapup: Nov. 11, 2017

Metasploit kicked November off to a roaring start with a wholesome dose of RCE, LPE, command injection, DoS, and more fixes/improvements. So many file choosers…but which one to choose? Big ups to @RootUP for the DoS module [https://github.com/rapid7/metasploit-framework/pull/9060] targeting a vulnerability in IBM’s Lotus Notes [https://en.wikipedia.org/wiki/IBM_Notes] client (CVE-2017-1130). The DoS module targets the web interface via malicious JavaScript (😱). An enterprising ‘sploiter can s

Read Full Post

5 min Metasploit

Testing Developer Security with Metasploit Pro Task Chains

In this modern age, technology continues to make inroads into all sorts of industries. Everything from smartphones to late-model automobiles to internet-connected toasters requires software to operate, and this proliferation of software has brought along gaggles of software developers with their tools-of-the-trade. All this technology —not to mention the people utilizing it— can result in an increased attack surface for organizations doing software development. In this blog post, we’ll explore

Read Full Post

2 min Metasploit Weekly Wrapup

Metasploit Wrapup: Nov. 3, 2017

What’s New? This week’s release sees multiple improvements and corrections, some years in the making! We fixed an interesting bug in the initial handshake with meterpreter that caused some payload callbacks to fail, improved error and information reporting in other modules, and then @h00die ran spellcheck [https://github.com/rapid7/metasploit-framework/pull/9144/files]! New (and Improved!) Modules (2 New): After three years, @wvu’s tnftp aux module grew up to become a strong, well-rounded explo

Read Full Post

6 min Metasploit

Testing SMB Security with Metasploit Pro Task Chains: Part 2

This is part two of our blog series on testing SMB security with Metasploit Pro. In the previous post, we explained how to use Metasploit Pro’s Task Chains feature to audit SMB passwords automatically. Read it here [/2017/10/31/testing-smb-server-security-with-metasploit-pro-task-chains-part-1/] if you haven’t already. In today’s blog post, we will talk about how to use a custom resource script in a Task Chain to automatically find some publicly-known high-profile vulnerabilities in SMB. Publi

Read Full Post

6 min Metasploit

Testing SMB Server Security with Metasploit Pro Task Chains: Part 1

A step-by-step guide to testing SMB server security using Metasploit Pro Task Chains.

Read Full Post

2 min Metasploit

Metasploit Wrapup: Oct. 27, 2017

Would you like to help Metasploit Framework and get a free t-shirt? There is still a bit of October left, which means you can totally still sign up for Hacktoberfest [https://hacktoberfest.com/]: a fun annual project to encourage open source software contributions! Make four pull requests on any open source GitHub project by Oct 31, and you might find yourself some joy and fulfilment—but at least a free t-shirt. Check out the Contribute section on the refreshed metasploit.com [https://metasploi

Read Full Post

2 min Metasploit Weekly Wrapup

Metasploit Wrapup: Oct. 20, 2017

Exploits for hours. Gather 'round with a pocket full of shells.

Read Full Post

2 min Metasploit

Metasploit Wrapup: Metasploit 5 or Bust

What's coming down the pipeline for Metasploit? Brent Cook brings you October's first Metasploit wrap-up.

Read Full Post

2 min Metasploit Weekly Wrapup

Metasploit Wrapup: Sep. 22, 2017

To celebrate this first day of Autumn[1], we've got a potpourri of "things Metasploit" for you this week. And it might smell a bit like "pumpkin spice"... Or it might not. Who knows? Winter is Coming If you're looking to finish filling your storehouse before the cold sets in, we've got a couple of new gatherer modules to help. This new Linux post module [https://www.rapid7.com/db/modules/post/linux/gather/tor_hiddenservices] can locate and pull TOR hostname and private key files for TOR hidden

Read Full Post

2 min Metasploit Weekly Wrapup

Metasploit Wrapup: Sept. 15, 2017

It's been a hot minute since the last Metasploit Wrapup. So why not take in our snazzy new Rapid7 blog makeover and catch up on what's been goin' down! You can't spell 'Struts' without 'trust' Or perhaps you can! With the all the current news coverage around an Apache Struts vulnerability from earlier this year [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5638] (thanks to its involvement in a consumer credit reporting agency data breach), there's a new Struts vuln [https://lgtm.com/

Read Full Post

1 min Metasploit

Metasploit: The New Shiny

It's been a while since I've written a blog post about new stuff in Metasploit [https://www.rapid7.com/products/metasploit/download/] (and I'm not sure if the editors will let me top the innuendo of the last one [/2017/02/09/metasploit-framework-valentines-update/]). But I'm privileged to announce that I'm speaking about Metasploit twice next month: once at the FSec 17 Conference [http://fsec.foi.hr/] in Varaždīn, Croatia September 7-8, and a second time at UNITED 2017 [https://unitedsummit.org/

Read Full Post

2 min Metasploit Weekly Wrapup

Metasploit Wrapup: August 11, 2017

Slowloris: SMB edition Taking a page from the Slowloris HTTP DoS attack [https://web.archive.org/web/20090822001255/http://ha.ckers.org/slowloris/], the aptly named SMBLoris DoS attack [/2017/08/03/smbloris-what-you-need-to-know] exploits a vuln contained in many Windows releases (back to Windows 2000) and also affects Samba (a popular open source SMB implementation). Through creation of many connections to a target's SMB port, an attacker can exhaust all available memory on the target by sendi

Read Full Post

2 min Metasploit

Hack with Metasploit: Announcing the UNITED 2017 CTF

Got mad skillz? Want mad skillz? This year at Rapid7's annual UNITED Summit [https://unitedsummit.org/index.php], we're hosting a first-of-its-kind Capture the Flag (CTF) competition. Whether you're a noob to hacking or a grizzled pro, you'll emerge from our 25-hour CTF with more knowledge and serious bragging rights. Show off your 1337 abilities by competing for top prizes, or learn how to capture your first ever flag. Read on for details, and if you haven't already done so, register for UNITED

Read Full Post

• ...
• 26
• 27
• 28
• 29
• 30
• ...