[Article]-Video: Pen Test Walkthrough with Metasploit Pro

Viewing 6 reply threads
  • Author
    Posts
    • #6176
      Don Donzal
      Keymaster

      EH-Net is proud to be the first with videos of the new Metasploit Pro that was just released today. Thanks to Rapid7 for the advance copy and to Ryan for being prepared to release it the same day as the release.

      Permanent link: [Article]-Video: Pen Test Walkthrough with Metasploit Pro

      [align=center:3glazf9u][/align:3glazf9u]

      Metasploit Pro 3.6was released today with a slew of new features aimed at facilitating pen testers throughout the entire penetration testing process.  One such new feature is asset tagging of groups of hosts, so that they can be grouped together easily.  Utilizing another new feature, global search, makes managing large engagements a breeze.  In addition to a free webinar on March 22 with James “egyp7” Lee on the Metasploit Framework, EH-Net regular columnist, Ryan Linn, explores Metasploit Pro.  He not only shows off some of those new features but also walks the viewer through the basic steps of performing a pen test with Metasploit Pro with the following 3 videos:

      – Getting Started With Metasploit Pro
      – Post Exploitation
      – Reporting and Cleaning Up

      As we all know, a pen test is not over when the hacking is done.  Rapid7 realizes this as well, so the new reporting capabilities are a very welcome addition.  It is now easy to generate PCI compliance notes based on the findings throughout the penetration test.  These reports indicate exactly where the failures are and actually provides evidence to support those findings.  For those that need more detailed reports on all of the activity performed throughout a penetration test, the activity report shows all commands issued and all gathered evidence.  These two reports alone can save a lot of time for testers who need to present this type of information to their clients.

      For those that haven’t learned to ‘stop worrying and love the GUI,’ Metasploit Pro now has a console mode where you can interact with Metasploit Pro just like the Community Edition.  For those that have embraced the GUI, the addition of tags allows for easy grouping of assets, and the tags can be used in many of the fields as shortcuts for specifying specific IP addresses.  This really speeds up every step in the process.

      So let’s get a feel for Metasploit Pro as a whole as well as the new features of v3.6.

      Enjoy, let us know what you think and please suggest other videos for Ryan to tackle,
      Don

    • #38617
      WCNA
      Participant

      Nice videos. I love the way Metasploit Pro & Nexpose  make it easy to work up detailed security reports. It should make a pentester’s job easier.

    • #38618
      maxpeck
      Participant

      Nice webinar. Very good presentation. Great hair!

    • #38619
      alucian
      Participant

      Thank you very much for the webinar!

      I really enjoyed it and I learned some things from it.

    • #38620
      jstall
      Participant

      Excellent Webinar, thanks. Look forward to the next.

    • #38621
      qnix
      Participant

      Amazing tool. Make a pen-tester lazy, but useful for big targets and fast and efficient reporting.

    • #38622
      hayabusa
      Participant

      Looking forward to making some time and catching the recording.  Sounds like it was a pretty good session, so I’ll catch it when workload permits.

Viewing 6 reply threads
  • You must be logged in to reply to this topic.

Copyright ©2021 Caendra, Inc.

Contact Us

Thoughts, suggestions, issues? Send us an email, and we'll get back to you.

Sending

Sign in with Caendra

Forgot password?Sign up

Forgot your details?