This document provides an overview of the Metasploit framework. It discusses that Metasploit is an open-source penetration testing software that can be used to test vulnerabilities on computer systems. It details the history and components of Metasploit, including its interfaces like the Metasploit Framework edition, Metasploit Community edition, Metasploit Express, and Metasploit Pro. The document also describes the basic steps to exploit a system using Metasploit and some related tools like Armitage and Cobalt Strike.
1. Cyber Security (2150002)
Active Learning Assignment
on
Metasploit
Prepared By:
Patel RajalKumar H.
(160123109013)
Guided By :
Prof. Abhishek Harit
Electrical Department
Batch-B3
Gandhinagar Institute Of technology 1
2. Introduction
• The Metasploit is a computer security that provides information
about security vulnerabilities and aids in penetration testing and
IDS signature development.
• Its best-known sub-project is the open source Metasploit
Framework, a tool for developing and executing exploit code
against a remote target machine.
• The Metasploit is well known for its anti-forensic and evasion
tools, some of which are built into the Metasploit Framework.
Gandhinagar Institute Of technology 2
3. History
• Metasploit was created by H. D. Moore in 2003 as a portable
network tool using Perl. By 2007, the Metasploit Framework
had been completely rewritten in Ruby.
• On October 21, 2009, the Metasploit Project announced that it
had been acquired by Rapid7, a security company that
provides unified vulnerability management solutions.
• Like comparable commercial products such as Immunity's
Canvas or Core Security Technologies' Core Impact,
Metasploit can be used to test the vulnerability of computer
systems or to break into remote systems.
Gandhinagar Institute Of technology 3
4. • Like many information security tools, Metasploit can be used for
both legitimate and unauthorized activities.
• Since the acquisition of the Metasploit Framework, Rapid7 has
added two open core proprietary editions called Metasploit
Express and Metasploit Pro.
• Metasploit's emerging position as the de facto exploit
development framework led to the release of software
vulnerability advisories often accompanied by a third party
Metasploit exploit module that highlights the exploitability, risk
and remediation of that particular bug.
Gandhinagar Institute Of technology 4
5. • Metasploit 3.0 began to include fuzzing tools, used to discover
software vulnerabilities, rather than just exploits for known
bugs. This avenue can be seen with the integration of the
lorcon wireless (802.11) toolset into Metasploit 3.0 in
November 2006. Metasploit 4.0 was released in August 2011.
Gandhinagar Institute Of technology 5
6. Metasploit Framework
• The basic steps for exploiting a system using the Framework
include:
1. Choosing and configuring an exploit (code that enters a target
system by taking advantage of one of its bugs; about 900
different exploits for Windows, Unix/Linux and Mac OS X
systems are included).
2. Optionally checking whether the intended target system is
susceptible to the chosen exploit.
Gandhinagar Institute Of technology 6
7. 3. Choosing and configuring a payload (code that will be
executed on the target system upon successful entry for
instance, a remote shell or a VNC server).
4. Choosing the encoding technique so that the intrusion-
prevention system (IPS) ignores the encoded payload.
5. Executing the exploit.
Gandhinagar Institute Of technology 7
8. Metasploit interfaces
1. Metasploit Framework Edition
• The free version. It contains a command line interface, third-party
import, manual exploitation and manual brute forcing. This free
version of metasploit project also includes Zenmap, a well known
ports-scanner and a compiler for Ruby, the language in which this
version of metasploit was written.
2. Metasploit Community Edition
• In October 2011, Rapid7 released Metasploit Community Edition, a
free, web-based user interface for Metasploit. Metasploit Community
is based on the commercial functionality of the paid-for editions with
a reduced set of features, including network discovery, module
browsing and manual exploitation. Metasploit Community is included
in the main installer.
Gandhinagar Institute Of technology 8
9. 3. Metasploit Express
• In April 2010, Rapid7 released Metasploit Express, an open-core
commercial edition for security teams who need to verify
vulnerabilities. It offers a graphical user interface, integrates nmap
for discovery, and adds smart brute forcing as well as automated
evidence collection.
4. Metasploit Pro
3. In October 2010, Rapid7 added Metasploit Pro, an open-core
commercial Metasploit edition for penetration testers. Metasploit
Pro adds onto Metasploit Express with features such as Quick Start
Wizards/Meta Modules, building and managing social engineering
campaigns, web application testing, an advanced Pro Console,
dynamic payloads for anti-virus evasion, integration with Nexpose
for ad-hoc vulnerability scans, and VPN pivoting.
Gandhinagar Institute Of technology 9
10. 5. Armitage
• Armitage is a graphical cyber attack management tool for the
Metasploit Project that visualizes targets and recommends exploits.
It is a free and open source network security tool notable for its
contributions to red team collaboration allowing for shared
sessions, data, and communication through a single Metasploit
instance.[11]
6. Cobalt Strike
• Cobalt Strike is a collection of threat emulation tools provided by
Strategic Cyber LLC (https://cobaltstrike.com/) to work with the
Metasploit Framework. Cobalt Strike includes all features of
Armitage and adds post-exploitation tools, in addition to report
generation features.
Gandhinagar Institute Of technology 10