Metasploit: The Penetration Tester’s Guide is written by Dave (ReL1K) Kennedy, Jim O’Gorman (_Elwood_), Devon Kearns (dookie2000ca), and Mati Aharoni (muts). This book is an essential read for anyone looking to get into the field of Penetration Testing as well as seasoned veterans. There are a ton of examples through out the book that make […]
Just in case you missed it Backtrack 5 r2 has been released with a ton of new tools including Reaver, Pyrit, and Pipal. The distribution also includes huge improvements to existing tools including Metasploit, Armitage, BeEF, and SET. The new distribution can be found on the Backtrack website.
Social Engineering Toolkit (SET) is a social engineering pen testing framework created by Dave (ReL1K) Kennedy. SET contains numerous tools to help pen testers test the human element during a security engagement.
Armitage is a great attack management tool for Metasploit. Armitage shows a graphical representation of your attack as you are putting it in motion. Armitage also allows for Red Teaming by allowing your team a way to collaborate an attack in the same Metasploit session.
So you have done some recon on your potential target and now you are on the exploitation phase of your pentest. Metasploit can connect to a database to keep track of the recon you collected on your targets. You can import an xml report from your Nmap scan or you can use the db_nmap command […]