SlideShare a Scribd company logo

BSides Algiers - Metasploit framework - Oussama Elhamer

Download as PPTX, PDF
Shellmates, profile picture
Shellmates

The document provides an overview of the Metasploit framework, including its architecture, key components, and how it can be used to run exploits and payloads. Some key points include: - Metasploit is an open-source platform for developing, testing, and using exploit code, with over 600 exploits and 200 payloads. - It allows attackers to easily customize payloads to specific exploits and test exploit research. - Meterpreter is a post-exploitation tool that avoids creating new processes or files, and provides an extensible command shell. - The framework simplifies running attacks by automating matching exploits to payloads and testing configurations.

TechnologyEducation
1 of 17
Downloaded 86 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
The Metasploit Framework By Elhamer Oussama Abdelkhalek
Contents : • Introduction : I. Basics . II. Running an attack The old fashioned way . III. Overview of the metasploit project and framework IV. Run the same attack using metasploit . • Metasploit overview and Basic framework usage . I. Metasploit Architechture . II. Consols . • MeterPreter basics and overView
Exploitation ! • Vulnerability : a weakness which allow an attacker to braek into a system security. • Exploit : code which allow attacker to take advantage of a vulnerable system • Payload : A code that Run On the System After Exploitation
-Vunerability -Exploit -Payload
1. Exploit RunsFirst 2. PayLoad Runs NextIf Exploit Succeed Exploit + Payload Data DownLooad VulnerableSystem Attacker Uploading Malwares …
Run an Exploit The Old Fashion Way .The Vulnerability : RPCDCOM The Buffer Overflow In Rcp Interface ; .The Exploit And The PayLoad are Availble ;
The Problem ! • A Lot Of Exploits ! • Hard To Cutomize The Payload . • Testing exploit Research is Painfull !. • Metasploit is a Short Cut 
What Is Metasploit ? • Metasploit has come to be synonymous with the Metasploit Framework. • The Metasploit Project Whose goal is to provide information that will be useful in I. Pentration Testing. II. IDS Signature. I. exploit research. • Developped By H.D Moor 2003 then acquired by Rapid7 • Primarily written in perl, • Then Rewritten in Ruby ‘Largest proGramme Even Wrotte In Ruby’ !! • The framework is an open-source platform for developing, testing and using exploit code. • The current “stable” version is version 4 • Similar to the commercial projects Canvas (Immunity) and Impact (Core)
Benefits • Over 600 tested exploits and 200 payloads ! • Plug and play of payloads with exploits -matching the Payload whith The Exloit -Try different Payload with The Same Exploit Code . • Lot Of Tools and Features For better And Faster pentests
Using Metasploit • Show – list modules available (exploits, payloads, etc) • Use – Use a specific exploit module • Set – set specific variables (Case sensitive) • RHOST – Remote Host (who we’re attacking) • PAYLOAD – The payload to carry • LHOST – Local Host (for the phone home attacks, reverse shell) • Exploit – run the exploit. • RpcDcom Using Metasploit.
Using Metasploit :
Metasploit Architecture:
MeterPreter • What We Are Looking For is a Payload which : • - Avoid Creation of a new Process . • - Should Run in The Exploited process’ Context. • - Should Not Created a new File On disk . • - Import More Functionality (extending ) and not Be Limited Whith The Created Remote Shell Commande . • - That Exactly What MeterPreter Do !
Meterpreter Basics • Post exploitation Tool • Woks by using in memory DLL injection • Does Not Create any files on disk • Uses encrypted communication between Client and Attacker • Stable ,Flexible and Extensible ! • Can be extended at runtime by shipping dlls To the Victime
How It Works • When The Exploit Succeed • Exploit and Run The First PayLoad  • PayLoad Connectes Back To Msf  • 2nd Stage Dll Injection Payload Sent  • Msf Sends Merterpreter Server Dll • Client And Server Communication 
Using Meterpreter • DEMO
Client Server Communication In Meterpreter • The Communication Is Encrypted . • In The Form of TlVs (Type Length Value). • So Multiple Channels Of communication can use the same client –server connection . • Allow For multiple programs running on the victim to communicate at the same Time . • Demo.

More Related Content

PPTX
Metasploit for Web Workshop
Dennis Maldonado
 
PPTX
Metasploit For Beginners
Ramnath Shenoy
 
DOCX
Boot-To-Root KIOPTRIX Level -1
Venkat Raman
 
PDF
Metaploit
Ajinkya Pathak
 
PPTX
Metasploit - Basic and Android Demo
Arpit Agarwal
 
PDF
Metasploit Demo
n|u - The Open Security Community
 
PPTX
Fileless Malware [Cyber Security]
sumit saurav
 
PDF
Virtual Machine Introspection in a Hyberid Honeypot Architecture
Tamas K Lengyel
 
Metasploit for Web Workshop
Dennis Maldonado
 
Metasploit For Beginners
Ramnath Shenoy
 
Boot-To-Root KIOPTRIX Level -1
Venkat Raman
 
Metaploit
Ajinkya Pathak
 
Metasploit - Basic and Android Demo
Arpit Agarwal
 
Metasploit Demo
n|u - The Open Security Community
 
Fileless Malware [Cyber Security]
sumit saurav
 
Virtual Machine Introspection in a Hyberid Honeypot Architecture
Tamas K Lengyel
 

What's hot (20)

PDF
Metasploit - The Exploit Learning Tree
E Hacking
 
PPTX
Metasploit framwork
Deepanshu Gajbhiye
 
PPTX
Practical Windows Kernel Exploitation
zeroSteiner
 
PDF
Is That A Penguin In My Windows?
zeroSteiner
 
PPTX
Metasploit Railguns presentation @ tcs hyderabad
Chaitanya krishna
 
PPTX
Finalppt metasploit
devilback
 
PPTX
Penetration testing using metasploit
Aashish R
 
PDF
Pentest with Metasploit
M.Syarifudin, ST, OSCP, OSWP
 
PDF
SSMF (Security Scope Metasploit Framework) - Course Syllabus
Security Scope
 
PPTX
Metasploit & Windows Kernel Exploitation
zeroSteiner
 
PPTX
Metasploit
Raghunath G
 
PPTX
Linux and windows
DevMix
 
PPTX
Metasploit (Module-1) - Getting Started With Metasploit
Anurag Srivastava
 
PPT
Automated Penetration Testing With The Metasploit Framework
Tom Eston
 
PDF
The State of the Veil Framework
VeilFramework
 
PDF
A Battle Against the Industry - Beating Antivirus for Meterpreter and More
CTruncer
 
PDF
AV Evasion with the Veil Framework
VeilFramework
 
PDF
NSS 2013: Towards Hybrid Honeynets via Virtual Machine Introspection and Cloning
Tamas K Lengyel
 
PDF
Veil-Ordnance
VeilFramework
 
PDF
Malware Collection and Analysis via Hardware Virtualization
Tamas K Lengyel
 
Metasploit - The Exploit Learning Tree
E Hacking
 
Metasploit framwork
Deepanshu Gajbhiye
 
Practical Windows Kernel Exploitation
zeroSteiner
 
Is That A Penguin In My Windows?
zeroSteiner
 
Metasploit Railguns presentation @ tcs hyderabad
Chaitanya krishna
 
Finalppt metasploit
devilback
 
Penetration testing using metasploit
Aashish R
 
Pentest with Metasploit
M.Syarifudin, ST, OSCP, OSWP
 
SSMF (Security Scope Metasploit Framework) - Course Syllabus
Security Scope
 
Metasploit & Windows Kernel Exploitation
zeroSteiner
 
Metasploit
Raghunath G
 
Linux and windows
DevMix
 
Metasploit (Module-1) - Getting Started With Metasploit
Anurag Srivastava
 
Automated Penetration Testing With The Metasploit Framework
Tom Eston
 
The State of the Veil Framework
VeilFramework
 
A Battle Against the Industry - Beating Antivirus for Meterpreter and More
CTruncer
 
AV Evasion with the Veil Framework
VeilFramework
 
NSS 2013: Towards Hybrid Honeynets via Virtual Machine Introspection and Cloning
Tamas K Lengyel
 
Veil-Ordnance
VeilFramework
 
Malware Collection and Analysis via Hardware Virtualization
Tamas K Lengyel
 
Ad

Viewers also liked (20)

PDF
Metasploit Humla for Beginner
n|u - The Open Security Community
 
PDF
Metasploit for Penetration Testing: Beginner Class
Georgia Weidman
 
PPTX
Tranning-2
Ali Hussain
 
PDF
Webinar Metasploit Framework - Academia Clavis
Clavis Segurança da Informação
 
PPTX
Metasploit for information gathering
Chris Harrington
 
PPTX
Slide Palestra "Metasploit Framework"
Roberto Soares
 
PDF
Alphorm.com Support de la formation Hacking et Sécurité Metasploit
Alphorm
 
PPTX
Basic Metasploit
Muhammad Ridwan
 
PDF
La Quadrature Du Cercle - The APTs That Weren't
pinkflawd
 
PDF
Metasploit: Pwnage and Ponies
Trowalts
 
PDF
Penetration test
Digicomp Academy AG
 
PPT
Metasploit-TOI-Ebryx-PVT-Ltd
Ali Hussain
 
PDF
Informationssicherheit im Übersetzungsprozess
Hans Pich
 
PPTX
Static PIE, How and Why - Metasploit's new POSIX payload: Mettle
Brent Cook
 
PPTX
Slide curso metasploit
Roberto Soares
 
PDF
Scrum Überblick Teil 1
Christof Zahn
 
PDF
Oscp preparation
Manich Koomsusi
 
PDF
Network Packet Analysis
Ammar WK
 
PPT
Writing Metasploit Plugins
amiable_indian
 
PDF
Pen-Testing with Metasploit
Mohammed Danish Amber
 
Metasploit Humla for Beginner
n|u - The Open Security Community
 
Metasploit for Penetration Testing: Beginner Class
Georgia Weidman
 
Tranning-2
Ali Hussain
 
Webinar Metasploit Framework - Academia Clavis
Clavis Segurança da Informação
 
Metasploit for information gathering
Chris Harrington
 
Slide Palestra "Metasploit Framework"
Roberto Soares
 
Alphorm.com Support de la formation Hacking et Sécurité Metasploit
Alphorm
 
Basic Metasploit
Muhammad Ridwan
 
La Quadrature Du Cercle - The APTs That Weren't
pinkflawd
 
Metasploit: Pwnage and Ponies
Trowalts
 
Penetration test
Digicomp Academy AG
 
Metasploit-TOI-Ebryx-PVT-Ltd
Ali Hussain
 
Informationssicherheit im Übersetzungsprozess
Hans Pich
 
Static PIE, How and Why - Metasploit's new POSIX payload: Mettle
Brent Cook
 
Slide curso metasploit
Roberto Soares
 
Scrum Überblick Teil 1
Christof Zahn
 
Oscp preparation
Manich Koomsusi
 
Network Packet Analysis
Ammar WK
 
Writing Metasploit Plugins
amiable_indian
 
Pen-Testing with Metasploit
Mohammed Danish Amber
 
Ad

Similar to BSides Algiers - Metasploit framework - Oussama Elhamer (20)

PPTX
Metasploit
Parth Sahu
 
PPTX
Metasploit
Lalith Sai
 
PPTX
Introduction To Exploitation & Metasploit
Raghav Bisht
 
PDF
Metasploit primary
n|u - The Open Security Community
 
PPTX
Pentesting with linux
Hammad Ahmed Khawaja
 
PDF
Metasploitation part-1 (murtuja)
ClubHack
 
PPTX
Metasploit
penetration Tester
 
PPTX
Introduction to Metasploit
GTU
 
PDF
Metasploit Computer security testing tool
medoelkang600
 
PPTX
Introduction to metasploit
GTU
 
PPTX
Metasploit Framework and Payloads supported
Swapnil Gharat
 
PDF
24 33 -_metasploit
wozgeass
 
PPTX
Metasploit
Institute of Information Security (IIS)
 
PPTX
Introduction of Metasploit and task.pptx
hira11ahmed02
 
PDF
Exploits Attack on Windows Vulnerabilities
Amit Kumbhar
 
PPTX
Metasploit framework in Network Security
Ashok Reddy Medikonda
 
PDF
Open Source Cyber Weaponry
Joshua L. Davis
 
PDF
Introduction to Metasploit
Hossein Yavari
 
PDF
01 Metasploit kung fu introduction
Mostafa Abdel-sallam
 
PPTX
metaploit framework
Le Quyen
 
Metasploit
Parth Sahu
 
Metasploit
Lalith Sai
 
Introduction To Exploitation & Metasploit
Raghav Bisht
 
Metasploit primary
n|u - The Open Security Community
 
Pentesting with linux
Hammad Ahmed Khawaja
 
Metasploitation part-1 (murtuja)
ClubHack
 
Metasploit
penetration Tester
 
Introduction to Metasploit
GTU
 
Metasploit Computer security testing tool
medoelkang600
 
Introduction to metasploit
GTU
 
Metasploit Framework and Payloads supported
Swapnil Gharat
 
24 33 -_metasploit
wozgeass
 
Metasploit
Institute of Information Security (IIS)
 
Introduction of Metasploit and task.pptx
hira11ahmed02
 
Exploits Attack on Windows Vulnerabilities
Amit Kumbhar
 
Metasploit framework in Network Security
Ashok Reddy Medikonda
 
Open Source Cyber Weaponry
Joshua L. Davis
 
Introduction to Metasploit
Hossein Yavari
 
01 Metasploit kung fu introduction
Mostafa Abdel-sallam
 
metaploit framework
Le Quyen
 

More from Shellmates (15)

PPTX
Cryptography basics
Shellmates
 
PPTX
HTML basics
Shellmates
 
PDF
Malware Analysis par Mohamed Ali FATHI - BSides Algiers 2k15
Shellmates
 
PDF
Atelier Python 2eme partie par Achraf Kacimi El Hassani
Shellmates
 
PPTX
JavaScript 1.0 by Zakaria Smahi
Shellmates
 
PDF
Introduction à Python - Achraf Kacimi El Hassani
Shellmates
 
PPTX
BSides Algiers - Stuxnet - Sofiane Talmat
Shellmates
 
PDF
BSides Algiers - Linux Kernel and Recent Security Protections - Djallal Harouni
Shellmates
 
PPTX
BSides Algiers - Layer7 DoS Attacks - Oussama Elhamer
Shellmates
 
PPTX
BSides Algiers - Reversing Win32 applications - Yacine Hebbal
Shellmates
 
ODP
BSides Algiers - Nmap Scripting Engine - Hani Benhabiles
Shellmates
 
PDF
BSides Algiers - Normes ISO 2700x - Badis Remli
Shellmates
 
PDF
BSides Algiers - PHP Static Code Analysis - Abdeldjalil Belakhdar
Shellmates
 
PDF
BSides Algiers - Certification Electronique - Lilia Ounini
Shellmates
 
PPTX
BSides algiers - Malware History - Sofiane Talmat
Shellmates
 
Cryptography basics
Shellmates
 
HTML basics
Shellmates
 
Malware Analysis par Mohamed Ali FATHI - BSides Algiers 2k15
Shellmates
 
Atelier Python 2eme partie par Achraf Kacimi El Hassani
Shellmates
 
JavaScript 1.0 by Zakaria Smahi
Shellmates
 
Introduction à Python - Achraf Kacimi El Hassani
Shellmates
 
BSides Algiers - Stuxnet - Sofiane Talmat
Shellmates
 
BSides Algiers - Linux Kernel and Recent Security Protections - Djallal Harouni
Shellmates
 
BSides Algiers - Layer7 DoS Attacks - Oussama Elhamer
Shellmates
 
BSides Algiers - Reversing Win32 applications - Yacine Hebbal
Shellmates
 
BSides Algiers - Nmap Scripting Engine - Hani Benhabiles
Shellmates
 
BSides Algiers - Normes ISO 2700x - Badis Remli
Shellmates
 
BSides Algiers - PHP Static Code Analysis - Abdeldjalil Belakhdar
Shellmates
 
BSides Algiers - Certification Electronique - Lilia Ounini
Shellmates
 
BSides algiers - Malware History - Sofiane Talmat
Shellmates
 

Recently uploaded (20)

PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
KodekX | Application Modernization Development
KodekX
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 

BSides Algiers - Metasploit framework - Oussama Elhamer

  • 1. The Metasploit Framework By Elhamer Oussama Abdelkhalek
  • 2. Contents : • Introduction : I. Basics . II. Running an attack The old fashioned way . III. Overview of the metasploit project and framework IV. Run the same attack using metasploit . • Metasploit overview and Basic framework usage . I. Metasploit Architechture . II. Consols . • MeterPreter basics and overView
  • 3. Exploitation ! • Vulnerability : a weakness which allow an attacker to braek into a system security. • Exploit : code which allow attacker to take advantage of a vulnerable system • Payload : A code that Run On the System After Exploitation
  • 5. 1. Exploit RunsFirst 2. PayLoad Runs NextIf Exploit Succeed Exploit + Payload Data DownLooad VulnerableSystem Attacker Uploading Malwares …
  • 6. Run an Exploit The Old Fashion Way .The Vulnerability : RPCDCOM The Buffer Overflow In Rcp Interface ; .The Exploit And The PayLoad are Availble ;
  • 7. The Problem ! • A Lot Of Exploits ! • Hard To Cutomize The Payload . • Testing exploit Research is Painfull !. • Metasploit is a Short Cut 
  • 8. What Is Metasploit ? • Metasploit has come to be synonymous with the Metasploit Framework. • The Metasploit Project Whose goal is to provide information that will be useful in I. Pentration Testing. II. IDS Signature. I. exploit research. • Developped By H.D Moor 2003 then acquired by Rapid7 • Primarily written in perl, • Then Rewritten in Ruby ‘Largest proGramme Even Wrotte In Ruby’ !! • The framework is an open-source platform for developing, testing and using exploit code. • The current “stable” version is version 4 • Similar to the commercial projects Canvas (Immunity) and Impact (Core)
  • 9. Benefits • Over 600 tested exploits and 200 payloads ! • Plug and play of payloads with exploits -matching the Payload whith The Exloit -Try different Payload with The Same Exploit Code . • Lot Of Tools and Features For better And Faster pentests
  • 10. Using Metasploit • Show – list modules available (exploits, payloads, etc) • Use – Use a specific exploit module • Set – set specific variables (Case sensitive) • RHOST – Remote Host (who we’re attacking) • PAYLOAD – The payload to carry • LHOST – Local Host (for the phone home attacks, reverse shell) • Exploit – run the exploit. • RpcDcom Using Metasploit.
  • 13. MeterPreter • What We Are Looking For is a Payload which : • - Avoid Creation of a new Process . • - Should Run in The Exploited process’ Context. • - Should Not Created a new File On disk . • - Import More Functionality (extending ) and not Be Limited Whith The Created Remote Shell Commande . • - That Exactly What MeterPreter Do !
  • 14. Meterpreter Basics • Post exploitation Tool • Woks by using in memory DLL injection • Does Not Create any files on disk • Uses encrypted communication between Client and Attacker • Stable ,Flexible and Extensible ! • Can be extended at runtime by shipping dlls To the Victime
  • 15. How It Works • When The Exploit Succeed • Exploit and Run The First PayLoad  • PayLoad Connectes Back To Msf  • 2nd Stage Dll Injection Payload Sent  • Msf Sends Merterpreter Server Dll • Client And Server Communication 
  • 17. Client Server Communication In Meterpreter • The Communication Is Encrypted . • In The Form of TlVs (Type Length Value). • So Multiple Channels Of communication can use the same client –server connection . • Allow For multiple programs running on the victim to communicate at the same Time . • Demo.