Webcast: Abusing Windows Remote Management (WinRM) with Metasploit

| November 21, 2012

Join us for a Free Webcast on Dec 4 

rapid7_logo.jpgIn this technical webinar for penetration testers, David Maloney discusses how you can use Windows Remote Management and Windows Remote Shell to obtain a session on a host while avoiding detection through anti-virus solutions. Participants will learn about:

• Capabilities of Windows Remote Management (WinRM) and Windows Remote Shell (WinRS)
• Discovering hosts running these services
• Brute forcing the services to obtain passwords
• Running WMI Queries and running commands
• Getting and migrating shells to a more persistent process

David Maloney, a Software Engineer on Rapid7’s Metasploit team, is responsible for development of core features for the commercial Metasploit editions. Before Rapid7, he worked as a Security Engineer and Penetration Tester at Time Warner Cable and as an Application Security Specialist for a global insurance company. David has been a long-time community contributor to the Metasploit Framework. He is one of the founders of Hackerspace Charlotte and is an avid locksport enthusiast.

Date:  Tuesday December 4, 2012
Time:  1:00 PM – 2:00 PM CST

webinar_button_registernow.gif
Register Now!

Even if you can’t join us live, please register anyway to get details on the video!

twitter-icon.png delicious.png

Discuss in Forums {mos_smf_discuss:Special Events}

 

rapid7_msf_logo_combined.jpg

Thanks to Rapid7 for sponsoring this webcast. Don’t forget to try Rapid7 Products for FREE!!

nexpose-download.png
Download NEXPOSE

metasploit-download.png
Download Metasploit

Rapid7 NeXpose, which received the highest rating of “Strong Positive” in Gartner’s Marketscope for Vulnerability Assessment 2011, leverages one of the largest vulnerabilities databases to identify vulnerabilities that represent the greatest threat to your organization

Metasploit Pro is enterprise-grade software for security professionals who specialize in penetration testing and require an advanced solution for multi-level attacks that enables them to get deeper into networks more efficiently. Rapid7 offers a free, fully featured trial version of Metasploit Pro for you to download.


With more than one million unique downloads in the past year, the free and open source Metasploit Framework is the world’s most popular exploit development and penetration testing platform.

As the Metasploit Project sponsor, and in cooperation with the open source community, Rapid7 is continuously expanding the exploit library and creating a broader platform with publicly available exploits, helping organizations to stay ahead of the changing threat landscape.

The Metasploit Framework enables:

  • Network security professionals to perform penetration tests
  • System administrators to verify patch installations
  • Software developers to perform regression testing

The Metasploit Framework enables you to:

  • Distinguish real threats from false positives to speed and simplify remediation
  • Prioritize penetration tests based on automated vulnerability scans
  • Pinpoint exploitable vulnerabilities in networks, operating systems, Web applications and databases
  • Add standard and custom exploits for pen-testing real-time

Category: Special Events

Comments are closed.