[null]Metapwn - Pwn at a puff by Prajwal Panchmahalkar

Now Pwn at a pufff….Now Pwn at a pufff….

• Metasploit Framework• metaPwn• FastTrackFastTrack• Armitage – The new and easy

convention.• SET

• Metasploit - The single most powerful tool available today for the Penetration testers.

• Used for Developing and executing exploit code against any target machine.

• An open source ruby framework, moved from perl.

• Lib: the ‘meat’ of the framework code base.

• Data: editable files used by Metasploit

• Tools: useful commandline utilities

• Modules: the Framework modules.

• Payloads• Scripts• External

• The most popular and best way to use Metasploit Framework.

• Efficient and wide access to all the options.

• Execution of external commands is possible

• It is very importand that you analyze your target

• The scan results (generally by nmap) are very useful.

• Know the services running on the Target machine from the scan results.

• Determine the vulnerabilities.

• Search • Tab Completion.• Check• load• Connect• Irb• route• run/exploit and more …. Follow the

demos >>

1. Know the target2. Scan for the suspected

vulnerabilities3. Find the pertaining payloads.4. Launch payloads to exploit

(Attack)5. Post Exploitation.

• Scan and Create a database• Import them to metasploit

• And “autopwn.autopwn.““

• Fast-Track is one more automated penetration suite.

• Fast-Track has 3 modes of operation – Interactive mode– GUI mode – Console mode (obsolete)

• Fast-Track comes with a good interface and support

• Tutorials available• Automates the exploitation• Dependent on Metasploit , so have it

updated.

• Social Engineering Tool kit• Comes with 10 major functions.– Spear-phishing Attack Vectors– Website attack vectors– Infection media generator– Create a payload and listener– Mass mailer attack– Teensy USB HID attack vector– SMS spoofing attack vector

• All the above listed attacks make the major attacks on the contemporary sytems.

• Lets have a detailed glimpse at all these services from SET….

• A very well Mapped GUI for penetration testing

• Provides a very good GUI and a map of the target machines

• Armitage also uses Metasploit framework to test on the target

• “Little is to be said and rest is the action”

Source :http://icis2005.unlv.edu/

Source :http://telegraph.co.uk

[null]Metapwn - Pwn at a puff by Prajwal Panchmahalkar

Education

Transcript of [null]Metapwn - Pwn at a puff by Prajwal Panchmahalkar

prajwal mohanmurthy arXiv:1310.6340v2 [physics.acc-ph] 13 ...

I haz you and pwn your maal

Pwn the SAT

PWN Presentation 3/26/13

Panther Puff

Puff SPECULATIVE

PWN Marseille-Provence 2012 - 2014

PWN Mentoring Programpwnromania.ro/wp-content/uploads/2015/09/Mentoring-PWN... · 2015. 10. 9. · KEY PROGRAMS: Mentoring –one of the traditional initiatives of PWN, with high

PWN Romania Press · PDF filePWN Romania Press Clippings PWN Romania Conference Gender Diversity 3rd November 2015 PWN Romania 12/4/2015 . ... Romania, cea mai mare scadere din UE

Pwn Plug User Manual - Pwnie Express

Mandeep Singh, Prajwal Shanthakumar, Jonah …home.iitk.ac.in/~mandeeps/C-UAS poster.pdfMandeep Singh, Prajwal Shanthakumar, Jonah Orevillo, Arash Nouri Dr. Pratap Tokekar, Dr. Matthew

PWN Stockholm Network Profile Analysis, 2015

Enquirer Puff

Prajwal & group - MES College - Global Compinies

Presentation Prajwal 19122014

Java vulnerabilities write once, pwn anywhere

Pwn the Pwn Plug - DEF CON...Pwn the Pwn Plug: Analyzing and Counter-Attacking Attacker-Implanted Devices Wesley McGrew Assistant Research Professor Mississippi State University Center

Prajwal - Demuris Lab Meeting - 4Jun2015

PEPPERIDGE FARM puff HOW-TO'S LEARN HOW TO ... - Puff Pastry

DevNexus 2016: Wait! Wait! Don't pwn me!