Today a task was given to me for automating metasploit attacks.
let me explain the task in a more detailed fashion....
let me take an example.
suppose we have been given an ip or list of ip to penetrate using metasploit
eg. 192.168.1.0/24
now what we do is scan the list of ip addresses for various ports and services and then look for any vulnerability for which
exploit has been provided in metasploit framwork.
If multiple exploits are given in the framework, we have to manually try all the exploits on all the machines and see whether it is working or not.
my job was to automate this opr.
I was very lucky coz Mr H D moore has already done this job and written a nice article on blog.metaspoit.com
I followed the instructions and set up my backtrack machine for the automation.
Thursday, March 12, 2009
Subscribe to:
Comments (Atom)