Packt+ | Advance your knowledge in tech

You're reading from Metasploit Revealed: Secrets of the Expert Pentester Build your defense against complex attacks

Product type Course

Published in Dec 2017

Publisher

ISBN-13 9781788624596

Length 860 pages

Edition 1st Edition

Tools

Metasploit

Concepts

Penetration Testing

Authors (2):

Nipun Jaswal

Sagar Rahalkar

View More author details

Table of Contents (35) Chapters

Title Page

Credits

Preface

1. Module 1 FREE CHAPTER

Metasploit for Beginners

2. Introduction to Metasploit and Supporting Tools

3. Setting up Your Environment

4. Metasploit Components and Environment Configuration

5. Information Gathering with Metasploit

6. Vulnerability Hunting with Metasploit

7. Client-side Attacks with Metasploit

8. Web Application Scanning with Metasploit

9. Antivirus Evasion and Anti-Forensics

10. Cyber Attack Management with Armitage

11. Extending Metasploit and Exploit Development

12. Module 2

Mastering Metasploit

13. Approaching a Penetration Test Using Metasploit

14. Reinventing Metasploit

15. The Exploit Formulation Process

16. Porting Exploits

17. Testing Services with Metasploit

18. Virtual Test Grounds and Staging

19. Client-side Exploitation

20. Metasploit Extended

21. Speeding up Penetration Testing

22. Visualizing with Armitage

23. Module 3

Metasploit Bootcamp

24. Getting Started with Metasploit

25. Identifying and Scanning Targets

26. Exploitation and Gaining Access

27. Post-Exploitation with Metasploit

28. Testing Services with Metasploit

29. Fast-Paced Exploitation with Metasploit

30. Exploiting Real-World Challenges with Metasploit

31. Bibliography

32. Thanks page

Exploit templates and mixins

Let's consider that you have written an exploit code for a new zero-day vulnerability. Now, to include the exploit code officially into the Metasploit Framework, it has to be in a particular format. Fortunately, you just need to concentrate on the actual exploit code, and then simply use a template (provided by the Metasploit Framework) to insert it in the required format. The Metasploit Framework offers an exploit module skeleton, as shown in the following code:

### This module requires Metasploit: http://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##require'msf/core'classMetasploitModule < Msf::Exploit::RemoteRank=NormalRankingdefinitialize(info={})
    super(update_info(info,
      'Name'           => "[Vendor] [Software] [Root Cause] [Vulnerability type]",
      'Description'    => %q{        Say something that the user might need to know},
      'License'        => MSF_LICENSE,
      'Author'        ...

The rest of the chapter is locked

You're reading from Metasploit Revealed: Secrets of the Expert Pentester Build your defense against complex attacks

Table of Contents (35) Chapters

Exploit templates and mixins

Unlock this book and the full library FREE for 7 days

Authors (2)

Personalised recommendations for you