The document discusses the Metasploit framework and its uses for penetration testing. It describes how Metasploit can be used for exploit development, tool development, scripting tasks, and testing various systems including software, wireless networks, web applications, and VOIP. It also lists several auxiliary modules and provides links for common exploits like MS08_067 and techniques like pass the hash and token stealing. It encourages users to get involved by joining the mailing list or IRC and provides contact information for the author.

1. By Rob Fuller

5. http://www.metasploit.com/

6. Failing is learning. Pen-Testers prove fail.

9. HOCUS POCUS

MS08_067_NETAPI – AKA OL' FAITHFUL

BUILDING A BINARY (IEXPRESS FTW)

PASS THE HASH / TOKEN STEALING

10. 
The Framework can be used to:


Testing & Fuzzing during Exploit Development
Make tool development FAST! and EASY!





(shoosh you college people!)
Scripting Tasks (Resource Files / Meterperter Scripts)
Not just sofware! (Wireless, Web, VOIP, etc)
REX!
AND MUCH MORE!

196 AUXILIARY MODULES!

11. 





MS 08_067 - http://bit.ly/1o4Ul3
PASS THE HASH - http://bit.ly/3fMlM5
TOKEN STEALING - http://bit.ly/LROoe
USE THE SVN!! - http://bit.ly/4iXe0e
GET INVOLVED! Mailing List, IRC etc:
LEARN MORE

Metasploit Unleashed: http://bit.ly/1VlKLm

12. 



Rob Fuller – mubix [at] hak5 [dot] org
http://www.room362.com/
http://twitter.com/mubix
.. anything /mubix