Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Exploitation Tool

Published byCurtis Paul Modified over 6 years ago

Similar presentations

Presentation on theme: "Network Exploitation Tool"— Presentation transcript:

1 Network Exploitation Tool
Fast-track Network Exploitation Tool

2 Overview Fast-Track is a Python-based penetration testing tool
It automates many functions necessary to identify network exploits Included in Backtrack OS

3 Backtrack 5 A Linux distribution (Ubuntu-based) designed with penetration testing in mind Comes preinstalled with many different suites of tools, including Nmap Wireshark Fast-Track

4 Fast-Track Features Fast-track works as a front-end to the Metasploit Framework Works in four steps Choose an exploit (over 300 are included by default) Choose a payload (such as a command shell or VNC client) Encode the payload to avoid detection Execute exploit

5 Exploits Among the over 300 exploits available (Windows and Linux)
Network exploits Database exploits (including Oracle, SQL Server, and PostgreSQL) Web application exploits Most exploits due to improper hardening techniques or unsanitized data

6 Types of Attacks Automated Mass Client-Side Attack Payload Generation

7 Payload Generator Assumes attacker has access to remote machine
Allows testing of host hardening and intrusion detection software Provides Several Types of Payload: Spawn a command shell Start a VNC server Open a port on remote system

8 Payload Generator, cont.
Provides several encoding procedures to test intrusion detection and antivirus Includes avoid_utf8_lower

9 Documentation Largely unclear and unavailable
Best source is the docs for Metasploit itself Still, many of the available choices are difficult to find information about

Download ppt "Network Exploitation Tool"

Similar presentations

Part 2 Penetration Testing. Review 2-minute exercise: RECON ONLY Find 3x IP addresses at the U.S. Merchant Marine Academy Google: “U.S. Merchant Marine.

Part 2 Penetration Testing. Review 2-minute exercise: RECON ONLY Find 3x IP addresses at the U.S. Merchant Marine Academy Google: “U.S. Merchant Marine.
Armitage and Metasploit Penetration Testing Lab

Armitage and Metasploit Penetration Testing Lab
Offensive Security Part 1 Basics of Penetration Testing

Offensive Security Part 1 Basics of Penetration Testing
A Complete Tool For System Penetration Testing Presented By:- Mahesh Kumar Sharma B.Tech IV Year Computer Science Roll No. :- CS09047.

A Complete Tool For System Penetration Testing Presented By:- Mahesh Kumar Sharma B.Tech IV Year Computer Science Roll No. :- CS09047.
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.

CSCI 530L Vulnerability Assessment. Process of identifying vulnerabilities that exist in a computer system Has many similarities to risk assessment Four.
Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.

Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
MIS 5212.001 Week 3 Site:

MIS Week 3 Site:
Browser Exploitation Framework (BeEF) Lab

Browser Exploitation Framework (BeEF) Lab
IBM Security Network Protection (XGS)

IBM Security Network Protection (XGS)
© 2012 IBM Corporation IBM Security Systems 1 © 2014 IBM Corporation IBM Security Network Protection (XGS) Advanced Threat Protection Integration Framework.

© 2012 IBM Corporation IBM Security Systems 1 © 2014 IBM Corporation IBM Security Network Protection (XGS) Advanced Threat Protection Integration Framework.
Nikto LUCA ALEXANDRA ADELA. Nikto  Web server assessment tool  Written by Chris Solo and David Lodge  Released on December 27, 2001  Stable release:

Nikto LUCA ALEXANDRA ADELA. Nikto  Web server assessment tool  Written by Chris Solo and David Lodge  Released on December 27, 2001  Stable release:
Dennis  Application Security Specialist  WhiteHat Security  Full-Time Student  University of Houston – Main Campus ▪ Computer.

Dennis  Application Security Specialist  WhiteHat Security  Full-Time Student  University of Houston – Main Campus ▪ Computer.
Chapter 5 Roles and features. objectives Performing management tasks using the Server Manager console Understanding the Windows Server 2008 roles Understanding.

Chapter 5 Roles and features. objectives Performing management tasks using the Server Manager console Understanding the Windows Server 2008 roles Understanding.
Lab #2 CT1406 By Asma AlOsaimi. Security has been a major concern in today’s computer networks. There has been various exploits of attacks against companies,

Lab #2 CT1406 By Asma AlOsaimi. "Security has been a major concern in today’s computer networks. There has been various exploits of attacks against companies,
MIS 5212.001 Week 2 Site:

MIS Week 2 Site:
Module 14: Configuring Server Security Compliance

Module 14: Configuring Server Security Compliance
Database Migration between various Applications Over Network -- Manish Padakanti U00261398.

Database Migration between various Applications Over Network -- Manish Padakanti U
Endian Firewall Community Edition Roy Hickman Technology Director Peck Community Schools #

Endian Firewall Community Edition Roy Hickman Technology Director Peck Community Schools #

Similar presentations

Ads by Google