|
|
|
Open-Source Exploit Tool: Point, Click, Root
By: Mark Hachman
2004-07-29
Article Rating: / 0
There are 0 user comments on this Network Security & Hardware story.
At Black Hat, Metasploit Framework developers demonstrate the latest version of the exploit tool designed to quickly take over a variety of target platforms.LAS VEGAS—Its as easy as "point, click, root."
At a heavily attended panel Wednesday at the Black Hat security conference here, HD Moore and "spoonm" unveiled the latest release of the Metasploit Framework, an exploit tool designed to quickly take over a variety of target platforms.
Although the framework was developed several months ago, the "preview release" of Version 2.2 offers users the opportunity to develop their own custom modules. The tool, written in Perl for Unix environments, also includes a Cygwin shell to enable it to run under Windows. The official Version 2.2 will be available in a week or so.
Both researchers demonstrated the tool "owning," or taking over, Mac OS X, Windows 2000 Server and Windows XP systems, although the duo used a VMWare virtual machine to speed the process. Metasploit even runs on a Sharp Zaurus PDA, which when equipped with a Wi-Fi card can be used to attack while mobile.
The authors described the tool as the open-source, cheap alternative to Immunitys Canvas and Core Security Technologys Impact tools, designed for commercial applications and requiring the latest exploits almost as quickly as possible. Metasploit currently contains 35 exploits and 40 payloads; the tool was designed to point the user to the exploit appropriate for the operating system.
 How should researchers handle exploit code? Read Larry Seltzers views.
Although available for several months, the tool is apparently still relatively unknown even in security circles, judging from the reaction of attendees. Patrick Chambet, a senior consultant at French IT security firm Edelweb SA, said he found the presentation the most interesting of the day. Another researcher said he worried that Metasploit would be used by "script kiddies" as a means to quickly own other boxes. For their part, Moore and spoonm described Metasploit as a research tool.
Most vulnerabilities submitted to Bugtraq and other mailing lists are "crappy," according to Moore, who said it is often too hard to tell what the programmer meant by the code attached to the submissions.
For insights on security coverage around the Web, check out eWEEK.com Security Center Editor Larry Seltzers Weblog.
Users can choose from between a command line, GUI or console interface. The framework also includes a "msfupdatesystem" command, which can connect to the Metasploit server to pull new updates and exploits.
All of the connections can be routed through SSL or a transparent SSL proxy, Moore said. Metasploit can perform VNC server injection as well as .DLL injection, which can load a DLL into the target machines RAM without the need to write information to disk.
Check out eWEEK.coms Security Center at http://security.eweek.com for the latest security news, reviews and analysis.
Be sure to add our eWEEK.com developer and Web services news feed to your RSS newsreader or My Yahoo page
|
|
�������x}r۸j�9km�]mGJɖ�kŲ,%L*�EB��ERd~u~|�.Kk8�["�h4���Iș3&�ל۔N]sSã7�w$wv~]�2I-*rdz&j9%G�jL7�R}f]S� ����LN�შ���:#:UG�.Pk< jZ5��3j5ԗoˏne0��-ZIQ6)�N�մn�۴�$�)q@ݡh]
�YQ�ږyH6�G�Ha��T�Ba5w0NKg~@k\�MmW ؓ�ۭ@x!�BP�#"F�\ς�ݻ�HjRvn8Gd`jI:@*"4�n�C6S!p�55\`p�)jHZ6tG,#H>�P7s�IzV@��daS��TB�p` F�R��̳ؖ�#vRp?N8C�En�ڏ�U[۾�t�sy@f��.j.�9ac�&� �] p==\'DL<:/�yӝÌfؖqwh �JZUQ��by_)�:+[1[߶S;�Qk]}wUMSN}z#�GA
\�mkh[J"ZAۇ贏/Iw?��9N6�
|'�L
R*��rP8&ȇ �Ԙ8j�jg`Q��%Je_�P+(.C#-byOa`%�pfQUe�:7'sKߺlZ:>=lN}3�fP+�M�~(#3h�ؕgxc�_:NWO�WfGN>n�s鐚&�tXAZ|[kUV�1?x7
|�kh2�`c�RZڗ{d��ŧ1I|U8fI~=w�!}Ow|�nro4�+@_x0Nuknr@k��FPY��D`6�R\� 9lb)6B̄H )7R�&�,)|YB* b�r�ݠPP3>̧KdoF"���23~�B(:�pHq�b���NbO}yp!jYY6'*taeIUiS[��ӢKsql5I{Nk|h�ǫ�g�",�$��ꨦU��,V�𢲯*X@8ʍ�??1m!SG�ñA
3M:vy0�`���;}J_�Oiͧ89~��t$�AG66^�zK
tcb���>'ݨä��+p|w��͇v1s��/|�\aR���֔ZN��=H:}mP`��5$ǎC-ߟ�L
�s#08w
ɍ�5�y0f+wEPb�L{��TM}��PC�n@�}S(�r`@YS9�ݲeǀxԜ�л�u�%w2J}g�n.G))(ߓ�]HPw9�J�
B�!\��0H�=`P� a�b
.<��Ҧ�B�Ig�]vn<�){T�Kh!+�K@fsfh(4{~6�cbB�|#'b�Xr`Y
�\h+|�h)lb
ը�6؛Ţri*|:IoBk4��0��uy=[I��-|' M�LcF��3p�Eql)�0�cϽp����7ȓkPr���VV̚s=P.ƃ5=7tݴ٤ͩqb���9_Aa"tL�eBC`9N{��gg3ۢf|a* ,qkrm�ׁ�fX8Õl�zbr���é&9|Yr�Y۶i
+&](Lu�J�J&��k*HX3�j-y�r�p
VOr1r@yOS*r�H1g0dz;��Oq=1S�7R�tZ�C+>q^i.;[@Lg˺z+fYT]۽/ 7�RiO4�m�
{246@0ٖk_Xt�
jQWt(:��АT
um:bX�G��J�Bb&^fdhQ?iMf�T���Sk�
��
XTM._
�}dҶê%M*�ګY3l�d �tA�qF�AjJ�栢��[
҆|x�ku�3�k�қyG&zg@>:`��ӹǟGQ,C*4hR�*}a�5)4&0Sӹbyq�|0b=91rl\�tf0이ׅ]!Ϥ߬('��i+�Co��{LsC�m0�G
"}˾_G�>t�ZB_`��/ƤO~�1:2.eX �k��f��Oa3ܓ0�1OK-� 3 M~��N!V�hPQ1
"I�Ou/�F+Aܧ^۬a�lEK�5�70�M�C���LKo=9>ئZ7i`�19R2f`KP�s�
h_7`wm�*�� :@{!G:0Z�,(Y)y6�^�vϩeۏS)&V$tu| `_ܚ:{>z,.��``!>�N-�1�Ȩi
05j-�tqMU*Ղʾ_v+^�>
(&�Lt0Ȑ�%=�Wl5ThO3܁c:P>H(TX�g7gMEH]ac6U�{z@n�)ZM�Me;4
O|>�7;gobr<9y�n2$8z0JL;O%95$_ۂ�3B{�ItLeb`l�ҍLnj*r1�_�?J=�[L4F�@V1M0g�7�=�;%���(4Q5r�l2~6P}m,l�ֳ>A��qHl7��T0'��JI)�`zVDZ)~��HǞ1}]�ܙe>t1Վ��8*�z)O��TʜYEo(QUmq'�F.Ҁ^ߵK�\b�v}b;_&I|SeYȃV�)+�i�+TX ?�+ZT��HU%}�EO�?^�nVɥZV?f�IG|)�AU��$UHU(V
�$�z�U��rm�4r�Ok,���ش�/6"h ޜ-�c�z�k
ez⥼_-�,sK"hʊg�_|�r[rn)ty��Ć5(4C-BwY|
`��3W?=,iI�?�r/鉚ĺ��RafcMٸUJ0iUI+T�Z}��̡=2f{c�і�$¾��.̓G\\׆hg�D0|7����#Sj$7�rQӊ5�JR�#0��X 8Z�bzQ�"Y�r�v�jT
�+�dP��\x�O+�tS�N\1ǷWXO\�dK!O�Wƒ"'!
M+�3,�`jBU\㯌&�Խn.N*o���o(0�h_�pmdU]uv��1�g +f[I)3+u�ƶO}i}9#@&̫{H;~xk�:L̇pڏ��nϥ%<�87}lz@J��5�?\v?7vŏ.0�oR-(; J@�c䆷$bw}ɾ3zZ^4�钿ð
Na�啀��unG4.?ŗtgK~R[R1~B`&!
qp~rU4+$Yq��|hq\3)6MF���0SW5!�xndD�ik��%/ҽl.9`\Bh5c-ɅH'���&a�Eq0aZxy~�ïU��2k~� �
I�+U:=@��
�� k@JA=�Voh{�g/щ�{mE
����bT1 _RJ�MQ�=#�ijf{LG� G)��^(o0�[LӷoHWY;GD_q-5s��z4~�\1Z9nl&ݳ=B2�^'68�=h)��I�B"0xc�|.A-H7ܺ�N: �4�qJh"g�:�A�;�)~ڰOCT䵤�
g[YUHN~�%!\8���a�l aڕ�rW�zTu"ԱGH1�;�;
�WS
�
e�Z�nOa7pϲ]ta}�`�|;p-F�G5�];�~OԢnL�q;�f='Fs)�=��cGm:;��@�@'wx�FMzuS棏G�
95�gy�Z7^^S�{20�}?I+I㆟��y�cP]!Z�SϏ$٘NB�EWU-u+lko(r�YpJyOVr;d�,�'c,n�V��(f~X;pGҠc�cmf�<ݸ�w[f�1vfw ݷP�>Y.=]bwQ��]xŞvYiIU�.J\�-"PnǸZZ�|_TK˵Q!a_/,Ft5.4�ˇvFQ�"��)'�OtRѩ}!J8꽏Gz:/�vz�W�Hxp]>v=�~Q�mK�n'gT7<%��9<$Cv繞LoZxj4�6ihZ[F`HN]9 r-8�kk5�h]FÝG2��|�ɸLDxXc�]j��;�3 ,��]P-Tr�,J�E')�$&ZQ'�;~/n!2
렳d,:fOaBl!d5=D�S2Pq�<":�
)
�\;M]1(�\~�oGaU�{ζ,Q~nNK,�O3�~L2)X!�SjbX7!%�4S)Yz%.<��8xqY{?Ar�
*q�3m�\,٘5ǾB�|Y}Kc_kӰ1R$byV6d�0d_�%�F#�ύLJ{�B�FK_m���7?sqBie
AL"WQAJaՊM�(�{xűW&;j6\�0'o�o9'!U���7��f+wi)
M����137�=�Ii-'}a�*H�VA ;�vRXQ1y�L1d9�H��-�[QR�HBNE'{QJɖd+WH'T�w"
Fޭ}IU%6y./ad؆iҕubI7cC|�ԂtbVjl�+Xg�J,TP6��;f�QS-�Ǿt�c�w ��A+� <��i��^hM�G}�GۖTIQ7eⳳ[_ׯԓ./[R²ncv� 0!�[Du2y]��Bܷ·M-GJJaS)=;4?R��bJnp����=+<8E+��@��dp�D8$i%�@��^��mM�[]�ӟmPbH.)O�
A[�5ó R$Y1��ysv�X`oS{{QKO٧ eCD�X[Е@�c�ZY:�6
�83��-�b�$ţ?mױ�Kb))s�q�ae}łVP;uP�m¿ҕK{mR]*(�b)'{_??z=̐`��]XH}
[@\
]#� ��P��!�00K?%AH|[})}|PWG2{ׁ�-;-.h�k�A!� 0B
I:NJYo<< q`Ɩ�o#$*0IX�&�f!˯1~&75Z8:cMJD~YQ�X~��̓3�BHu!��`F���MqoZ址Cݧ�ȾL�UEM=L�Ԥ>NƤ^+#�y K�`��9⹉�P�0Dx7o�\}g]_
tԗ�y�0���JN+�Gݰ;V0T~ME/~U��e\a4�̝\\�DW{В/߀�p8�\�~C$�lknz��T2PZSh�~�L]lƱf6S7{�M_ro��&`�l�j�V���s(�S-~g3�@VE[6bԽKYfP�MgD�6�dfph֒�_fX�)l%I"q0ME��QqD3��3c$�Xz��"F,��Kt��=wM{8sZ��<3/],6�88oqe|W�c�,'�I4b'�l//�A1DKb���@/j�3]Lv�PC�-nx.;�!'i\7T60M�}"�smOӪ{
es�s7>kE_A-W%iΞCad^p/� 3c1Oy�nCn�Ž�q4�u�DJZ/x�T��ݦ!ew�?�-Y?`Cp�oc䭼5d?�?~܉ ?YSL;;��0���_�"
ë.��GM�qt�B�x���w�W;4ē[eqGD{�bݵ���۫Z�-3tf䏅Yb�,n\3#)5|5X������:R�w
�(g�*'q'm("j\ĪK�jss$Ʈ$��Jj��ad��$ƽ↞t�yϽeL��l�GX�Z���a0̈_�1V&G�B�A8A�XJ�o,"�xa��o3q�uQ%�.?���^P_Z6TP��m.�MEfAȢ-\1�~U}ub?=G/ttAk-c"]J1x~��[N֘1h*B Uٜ�A�5��ݗ�RU
BI�� �s:�Okp}�l>)fF<�@��L\�j=!vC` J�.қ≠D37:Q�Zs;i"n@ O@�'ԾAc,(v�۫}�y }���lMᗚk�惔K�pʭBף6:F�̽M$LD0�V�2�j�j|�UMhբ*�/,bGc�0/Ƙ;�`^*iB¼{=i�x�
kHу%O}�)с~-��?"A�dӃѯ)^�F�@O�
`ƖC/0Ÿ^o44�ȱ�LL8,~)qVH|Uݷd}exx퀯J�"�rK�4�X)tD`߄B>�8g-�:{ᛂWZ-�F��/�|�T�3/b-3-Ѩ#�7>xIn��1K= o~{@\r
8�q�,@�Ye)+�փފ> rF@Yj!u=H]�U#
`�xG(��z�?4gu;k�zxX�2d,ݻs�2�ӿCߑ7U~O�
^=�;5&�g|�r�`(L;�BxWt'ly.%4Gu/
O~ScPx-�r9G}8kֺxyS�fhGR3O0�ឩ�VATdL4B&(qTi+$<49|_zLIL�% �=a� k(E�$�Y c5F$��BDc^r�{fĄ�S�%-���.Ea{s}�%��zH�"V|8snj�� 2鐚*��dj�>�,ywF7`C'[�j�E�Y|ob{�&�,ȏ]їKlݜ�(�8��ó�j1I(tC�K/H�zst�pM,×>0�(��-Ō��CZQJФ*t�!dW`ǪZJ$�Pux30nտW-4W
)WP�x����r##vFC�dPLܼG|�LBz،\�ݹ�嘫7..ξ%iV>�/�v�κWx
Zѷptԭsm~9^|9i..\`&hT/晾��,g6OFY�i1;eNq(M1B*rK��xU�,
/g%L�qx&)(o��E_VC�ĨҋSa0/LLD�7VeS+�_�?gg:^Y3r�ZOm?ӦoJ�cr�N�M�o���
)nu:y+W�MjV}Qq�xQ�?f�e_B�pj#�r&Р(?'@�|OPi}i;W?m/o7sv3��g�vF?r/Pe}�?ˀ�]1>��w�};��}:���;��v2�e<�P9�O3�(@y'�g�9~WP~U�{WUFWW�$)c�F5.pvJEsQ^Տ2T�}~�)�P'�P
g��~-2"B�@^~_ [L+ťW�*7YKxM}%kk[Z1nv�d}חG{1*�,xW&U��e���^>&c����˼$=)>w�槤I��xմ] &JRW[O'i��kr(%s<2g!�h{U2�6#�{"tfc�ɾwOD1�K�AF0w��Q2��oL2~�<'Ԏ�nOArr m>v=y�^���^j{��4�qa� �fgefJ�C Dk(��x��[xWcDR~�_ƴmBfp�0l{|y�
ގe�@���7��J�,�w��;��ŨЋD@3UƝ�_�p1iR�
��{{�[2gډ�e�:'�q8Sc��ӄ��Y"Dü��xl�4@�4�Xj9�SYF
�
T z�dFLdp!gB-ҋKt�^@e�D�˺U&b�)�L)�t2��:՞/kn�:aKƈ��DM�KIn�_!gmx'GiErly0g�lg�'�XSGнCӟ�}�Q!rE>W&x6�,0�GZ1i����!n�f9/8wjIcS�s60�L(w$LfMP�v�m;�P8,>�/�chd1ck�
+#�P<����ՍP�cc6Hm�\wrlC�k���vܙ%'O_aW'9�fS(;>LȮx��-}x�=
�94Id�`M_9o.<���5C�{1B9
H|\��k,##1苌Y�MC��Vk�ͅ*q8w ɰ\,Nd=:rC�hq߰ qtdo5RFXk[MA�c>l:h}v�xa\7�A0D00�Y��~l+>FՋpa�]7�BG-XO�t(.��h@?��T|5
5�\6LDR/;��FOn���C��>X�X��e:9ebV)qme�z�ӧ�-[$@�5E`1v4`ehDSL/Tvy*3*>�% �/�1-i��֦Ju!A]�=_�vs[>/'R`Ş�i#}��@ =(ۊnfTt�
�%`GY�U`��v�q�얢U��.nD0 '�Ɣ
ϰO"�- s��m��xDh\=3E~1㡺_�V~LʩkcPֽk�x�ٚջHR#z3v59ɓz��0��
�s!�׆!�a+cPOYjcL1GfYz����L�5�2lt*�
X>!ˣoF%Dv88)ҡCA؞Bʄ>eS1C7@n0\|H
d[\K^مnu�v3�\j�)/�YH~>����fr*r*]x�D4;Nb����_yfϸȅ�v0,#ֿ�N�|]嬵t1N��ʓy_:itg_�xH%L=Sw=
aF[+O�(QF2p?XQ|=^`gh5/=j�ptޔ6=EKB^6[i��B"E�wh6��?a(X�E�Ch�w⍿#01�4[3ˬZY$I#[ov[�b$-�U.ɾR�6v3��F'a9TU>\J�BS+$�Z/WfTN�Ƈ̚J܄;6�6BKFslx�6�1��k(��
|
Network Security & Hardware 
