Metasploit 3.0 Doesn't Pwn Systems, Black Hats Pwn Systems
May 07, 2007, 12:00 (0 Talkback[s])
(Other stories by Joe Barr)
WEBINAR: On-demand Event
Replace Oracle with the NoSQL Engagement Database: Why and how leading companies are making the switch REGISTER >
[ Thanks to An Anonymous Reader for
this link. ]
"Metasploit LLC released version 3.0 of the Metasploit Framework
(MSF), the popular penetration testing project, late last month.
Version 3.0 is a complete rewrite of the previous tools using
primarily the Ruby programming language; versions 1 and 2 were
written primarily in Perl. Also new are an experimental GUI, and
perhaps the crowning jewel of the release, the db_autopwn module,
which automates exploit discovery and execution.
"MSF is designed for automated penetration testing. To that end,
it keeps a stable of exploits known to work against specific
targets: various releases of Windows, Linux, BSD, generic Unix, and
Mac OS. It also runs on many of those same platforms, and has even
been seen on a Nokia N800 handheld..."