Results 1 to 7 of 7

Thread: Someone have used Metasploit integrated with nmap?

  1. 09-09-2008, 02:04 AM #1
    The Dan
    The Dan is offline
    Just burned his ISO
    Join Date
    May 2008
    Posts
    24

    Default Someone have used Metasploit integrated with nmap?

    Hi,

    Today I was reading a presentation from HD More and I seen that since version 3 Metasploit can integrate with nmap, to automate the exploitation process.

    Someone have used it?

    I looked at internet and the exmplanation use a module names db_autopwn to integrate with nmap, but my metasploit 3.2 say it doesn't exist.

    Someone know if it still exist? If how it work changed?

    source: H T T P://blog.metasploit.com/2006/09/metasploit-30-automated-exploitation.html

    ps.: Admins: Sorry if I post in the wrong section, if it's the case, please move me to the right place.

    ps2.: Remove spaces from "H T T P". It's cause I can't post links

    Thanks
  2. 09-09-2008, 02:12 AM #2
    imported_=Tron=
    imported_=Tron= is offline
    Senior Member
    Join Date
    Apr 2008
    Posts
    2,008

    Default

    You can easily import both nmap and nessus scans into the db_autopwn function, but you will most likely find FastTrack to be exactly what you are looking for. It will allow you to simply type in the IP range to scan, and will then automatically launch exploits against the open ports.

    EDIT: Just to make it clear, you can naturally launch nmap manually from within metasploit as well to add some targets to the host list. For example using the following command:
    Code:
    db_nmap -p 137,139,445 192.168.1.0/24
    -Monkeys are like nature's humans.
  3. 09-09-2008, 06:27 AM #3
    The Dan
    The Dan is offline
    Just burned his ISO
    Join Date
    May 2008
    Posts
    24

    Default

    Hi =Tron=

    Thank you, the FastTrack information was the key, for who also want some example:

    H T T P://forums.remote-exploit.org/showthread.php?t=15879

    It appear to be a nice tool, should be wonderful if it was able to exploit all together (Metasploit + brute SQL Server + Auto SQL Injection). hehehe

    ps2.: Remove spaces from "H T T P". It's cause I can't post links

    thanks

    Regards
  4. 09-09-2008, 06:32 AM #4
    imported_=Tron=
    imported_=Tron= is offline
    Senior Member
    Join Date
    Apr 2008
    Posts
    2,008

    Default

    Quote Originally Posted by The Dan View Post
    It appear to be a nice tool, should be wonderful if it was able to exploit all together (Metasploit + brute SQL Server + Auto SQL Injection). hehehe
    You might want to check out the features added in the newest version:
    http://forums.remote-exploit.org/showthread.php?p=98822
    -Monkeys are like nature's humans.
  5. 09-09-2008, 09:22 AM #5
    imported_relik
    imported_relik is offline
    Member
    Join Date
    Feb 2006
    Posts
    167

    Default

    Fast-Track rules!!!
  6. 09-09-2008, 09:46 AM #6
    ShadowKill
    ShadowKill is offline
    Senior Member ShadowKill's Avatar
    Join Date
    Dec 2007
    Posts
    908

    Default

    Quote Originally Posted by relik View Post
    Fast-Track rules!!!

    Haha, self bump anyone?!



    "The goal of every man should be to continue living even after he can no longer draw breath."
    ~ShadowKill
  7. 09-09-2008, 06:00 PM #7
    imported_relik
    imported_relik is offline
    Member
    Join Date
    Feb 2006
    Posts
    167

    Default

    Quote Originally Posted by ShadowKill View Post
    Haha, self bump anyone?!
    Who??? Me???
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules