Metapwn
Download as PPT, PDF3 likes561 views
The document discusses several tools used for penetration testing including Metasploit Framework, Armitage, Fast-Track, Social Engineering Toolkit (SET), and their functions. Metasploit is an open-source framework for developing and executing exploits, while Armitage provides a graphical user interface for Metasploit. Fast-Track and SET are automated suites that perform exploitation and social engineering attacks respectively, making the testing process easier.
Metapwn
- 1. Now Pwn at a pufff….
- 4. Metasploit Framework metaPwn FastTrack Armitage – The new and easy convention. SET
- 5. Metasploit - The single most powerful tool available today for the Penetration testers. Used for Developing and executing exploit code against any target machine. An open source ruby framework, moved from perl.
- 6. Lib : the ‘meat’ of the framework code base. Data : editable files used by Metasploit Tools : useful commandline utilities Modules : the Framework modules. Payloads Scripts External
- 11. The most popular and best way to use Metasploit Framework. Efficient and wide access to all the options. Execution of external commands is possible
- 12. It is very importand that you analyze your target The scan results (generally by nmap) are very useful. Know the services running on the Target machine from the scan results. Determine the vulnerabilities.
- 13. Search Tab Completion. Check load Connect Irb route run/exploit and more …. Follow the demos >>
- 16. Know the target Scan for the suspected vulnerabilities Find the pertaining payloads. Launch payloads to exploit (Attack) Post Exploitation.
- 17. Scan and Create a database Import them to metasploit And “ autopwn. “
- 20. Fast-Track is one more automated penetration suite. Fast-Track has 3 modes of operation Interactive mode GUI mode Console mode (obsolete)
- 21. Fast-Track comes with a good interface and support Tutorials available Automates the exploitation Dependent on Metasploit , so have it updated .
- 23. Social Engineering Tool kit Comes with 10 major functions. Spear-phishing Attack Vectors Website attack vectors Infection media generator Create a payload and listener Mass mailer attack Teensy USB HID attack vector SMS spoofing attack vector
- 24. All the above listed attacks make the major attacks on the contemporary sytems. Lets have a detailed glimpse at all these services from SET….
- 25. A very well Mapped GUI for penetration testing Provides a very good GUI and a map of the target machines Armitage also uses Metasploit framework to test on the target “ Little is to be said and rest is the action”