|
Metasploit Toolkit for Penetration Testing, Exploit Development, & Vulnerability Research
This is the first book available for the Metasploit
Framework (MSF), which is the attack platform of choice for
one of the fastest growing careers in IT security:
Penetration Testing. The book and companion Web site will
provide professional penetration testers and security
researchers with a fully integrated suite of tools
for
discovering, running, and testing exploit code. This book
discusses how to use the Metasploit Framework (MSF) as an
exploitation platform.
The book begins with a detailed discussion of the three MSF
interfaces: msfweb, msfconsole, and msfcli .This chapter
demonstrates all of the features offered by the MSF as an
exploitation platform. With a solid understanding of MSF's
capabilities, the book then details techniques for
dramatically reducing the amount of time required for
developing functional exploits. By working through a
real-world vulnerabilities against a popular closed source
applications, the reader will learn how to use the tools and
MSF to quickly build reliable attacks as standalone
exploits. The section will also explain how to integrate an
exploit directly into the Metasploit Framework by providing
a line-by-line analysis of an integrated exploit module.
Details as to how the Metasploit engine drives the
behind-the-scenes exploitation process will be covered, and
along the way the reader will come to understand the
advantages of exploitation frameworks. The final section of
the book examines the Meterpreter payload system and teaches
readers to develop completely new extensions that will
integrate fluidly with the Metasploit Framework.
CONTENTS:
1: Introduction to Penetration Testing 2: Open Source Coding 3: Using the Metasploit Framework 4: Updating the Metasploit Framework 5: Exploit Development with Metasploit 6: Integrating Exploits into the Framework 7: Advanced Features of the Metasploit Framework 8: Writing Meterpreter Extensions Appendix: Metasploit Module Reference
|
