Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit...
Transcript of Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit...
![Page 1: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/1.jpg)
@NTXISSA #NTXISSACSC3
Metasploit Year in Review
James Lee
Metasploit Developer and Community Manager
Rapid7
2015-10-03
![Page 2: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/2.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
$ whoami
James Lee@egyp7Metasploit Developer Community Manager
2
![Page 3: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/3.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
What is Metasploit
Framework for building & using:● Exploits● Post-exploitation tasks● Reconnaissance tools
Scaffolding for solving networking problems● Client for many protocols
3
![Page 4: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/4.jpg)
@NTXISSA #NTXISSACSC3
A few numbers
![Page 5: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/5.jpg)
@NTXISSA #NTXISSACSC3
Rapid7 has 71 Public Repositories
5
![Page 6: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/6.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Repos You Probably Care About
metasploit-frameworkmetasploit-payloadsmetasploit-omnibus
6
![Page 7: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/7.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Repos You Might Find Interesting
7
github-connectorssh-badkeys
![Page 8: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/8.jpg)
@NTXISSA #NTXISSACSC3
![Page 9: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/9.jpg)
@NTXISSA #NTXISSACSC3
Over 1200Pull Requests landed
9
![Page 10: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/10.jpg)
@NTXISSA #NTXISSACSC3
Over 7500commits
git log --since '2014-09-26' --oneline | wc -l
10
![Page 11: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/11.jpg)
@NTXISSA #NTXISSACSC3
git log --since '2014-09-26' --format='%aE' | sort -u
Almost 200unique authors
11
![Page 12: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/12.jpg)
@NTXISSA #NTXISSACSC3 12
![Page 13: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/13.jpg)
@NTXISSA #NTXISSACSC3
358new modules
13
![Page 14: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/14.jpg)
@NTXISSA #NTXISSACSC3
Modules
![Page 15: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/15.jpg)
@NTXISSA #NTXISSACSC3
20 Local Priv Escalation
15
![Page 16: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/16.jpg)
@NTXISSA #NTXISSACSC3
Local exploit suggester
16
![Page 17: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/17.jpg)
@NTXISSA #NTXISSACSC3 17
exploit/unix/webapp/wp_admin_shell_upload
![Page 18: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/18.jpg)
@NTXISSA #NTXISSACSC3
Anti-Virus Products
![Page 19: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/19.jpg)
@NTXISSA #NTXISSACSC3 19
auxiliary/gather/mcafee_epo_xxe
![Page 20: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/20.jpg)
@NTXISSA #NTXISSACSC3 20
exploit/linux/http/symantec_web_gateway_restore
![Page 21: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/21.jpg)
@NTXISSA #NTXISSACSC3 21
exploit/windows/browser/malwarebytes_update_exec
![Page 22: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/22.jpg)
@NTXISSA #NTXISSACSC3 22
js-beautifier
exploit/multi/fileformat/js_unpacker_eval_injection
![Page 23: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/23.jpg)
@NTXISSA #NTXISSACSC3
Browser Exploitation
![Page 24: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/24.jpg)
@NTXISSA #NTXISSACSC3
21 browser exploits
24
![Page 25: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/25.jpg)
@NTXISSA #NTXISSACSC3 25
![Page 26: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/26.jpg)
@NTXISSA #NTXISSACSC3 26
![Page 27: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/27.jpg)
@NTXISSA #NTXISSACSC3 27
![Page 28: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/28.jpg)
@NTXISSA #NTXISSACSC3 28
![Page 29: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/29.jpg)
@NTXISSA #NTXISSACSC3
SOHO Routers
![Page 30: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/30.jpg)
@NTXISSA #NTXISSACSC3 30
![Page 31: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/31.jpg)
@NTXISSA #NTXISSACSC3
Credentials
![Page 32: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/32.jpg)
@NTXISSA #NTXISSACSC3
Service
32
Cred
Cred
Cred
Old and Busted
![Page 33: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/33.jpg)
@NTXISSA #NTXISSACSC3
Core
Private
Public
Realm
Blank Username
SNMP Community
NTLM Hash
SMB Domain
Postgres DB
Username
Password
SSH Key
Non-replayable Hash
33
![Page 34: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/34.jpg)
@NTXISSA #NTXISSACSC3
Core
Service
34
Login
Login
Login Service
![Page 35: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/35.jpg)
@NTXISSA #NTXISSACSC3
Java Serialization
![Page 36: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/36.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Java Serialization with RMI, JMX
36
auxiliary/gather/java_rmi_registryexploits/multi/misc/java_jmx_serverexploits/multi/misc/java_rmi_server
![Page 37: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/37.jpg)
@NTXISSA #NTXISSACSC3
SMB
![Page 38: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/38.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Kerberos
Partial implementation• Enough to exploit MS14-068
38
![Page 39: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/39.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
SMB Server
39
Partial implementation• Serve a single file• Enough to exploit most DLL hijacks
![Page 40: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/40.jpg)
@NTXISSA #NTXISSACSC3
Payload Improvements
![Page 41: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/41.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Interactive PowershellCan upgrade to meterpreterMostly compatible with existing Post API
Powershell Session Type
41
![Page 42: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/42.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Unicode support
Meterpreter handles unicode in filesystems• Still have to have support in your terminal
42
![Page 43: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/43.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
UUID Tracking
Embed Universally Unique ID in payloads• Makes a payload identifiable• Track which EXE got this session
Generate unique machine ID for each session• Makes a machine identifiable• Track whether we’ve popped this box before
43
![Page 44: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/44.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Paranoid Mode
Set a real TLS cert for payload handlers• Verify it from Meterpreter side• Bail if we’re being MitM’d
Whitelist UUIDs in the handler• Don’t start sessions for
things that aren’t a payload
44
![Page 45: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/45.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Meterpreter Transport Reliability
45
![Page 46: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/46.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Runtime Transport Control
reverse_tcp vs reverse_http vs reverse_https
Bind• tcp://:8000/IPv6• tcp6://fe80::82e6:50ff:fe08:2e50:8000?en0HTTP(S)• https://1.2.3.4/<generated URI>
46
![Page 47: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/47.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Configurable timeouts
● Session● Communication● Retry total● Retry wait
47
![Page 48: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/48.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Stageless Meterpreter
Skip staging and put everything in one payload
48
![Page 49: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/49.jpg)
@NTXISSA #NTXISSACSC3 49
![Page 50: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/50.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
NTDS.dit
Domain controllers store accounts Multi-GB file for large orgsDownloading giant files sucks
50
![Page 51: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/51.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
NTDS.dit Solution
51
windows/gather/credentials/domain_hashdump
Uses a C extension to parse on targetSend back a few at a time
![Page 52: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/52.jpg)
@NTXISSA #NTXISSACSC3
Infrastructure
![Page 53: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/53.jpg)
@NTXISSA #NTXISSACSC3
Ruby 2.1.6
53
![Page 54: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/54.jpg)
@NTXISSA #NTXISSACSC3 54
![Page 55: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/55.jpg)
@NTXISSA #NTXISSACSC3 55
Omnibus logo
![Page 56: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/56.jpg)
@NTXISSA #NTXISSACSC3
Random
![Page 57: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/57.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Workspace in Your Prompt
57
![Page 58: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/58.jpg)
@NTXISSA #NTXISSACSC3NTX ISSA Cyber Security Conference – October 2-3, 2015
Tab-completing LHOST
58
![Page 59: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/59.jpg)
@NTXISSA #NTXISSACSC3
Questions?
![Page 60: Metasploit Year in Review · 2016. 2. 10. · Metasploit Year in Review James Lee Metasploit Developer and Community Manager Rapid7 2015-10-03. NTX ISSA Cyber Security Conference](https://reader035.fdocuments.net/reader035/viewer/2022081600/60573d7c833ed674b32f2388/html5/thumbnails/60.jpg)
@NTXISSA #NTXISSACSC3@NTXISSA #NTXISSACSC3
The Collin College Engineering Department
Collin College Student Chapter of the North Texas ISSA
North Texas ISSA (Information Systems Security Association)
NTX ISSA Cyber Security Conference – October 2-3, 2015 60
Thank you