0sec07 - 0.7
0sec 2007
| Speakers | |
|---|---|
|
Saumil Shah |
| Schedule | |
|---|---|
| Day | 3 |
| Room | Talk |
| Start time | 15:00 |
| Duration | 04:00 |
| Info | |
| ID | 5 |
| Event type | Workshop |
| Track | Talks |
| Language | English |
Writing Exploits using Metasploit 3.0
Metasploit 3.0 offers a lot of new features and tricks for the exploit writer. In this talk, we shall take a few examples of vulnerabilities, write an exploit from the ground up, and see how Metasploit 3.0 assists the process of writing exploits. We shall also see how your exploits can be integrated as plugins into the Metasploit framework, and how to use Metasploit's excellent post-exploitation capabilities.
We shall re-visit some classic attacks and also cover advanced exploits such as browser attacks via heap spraying. Participants shall get insights into discovery and verification of vulnerabilities, finding the entry points, gaining control of program flow, choices of shellcode and finally writing a working exploit for the vulnerability. Participants shall also get an overview of Metasploit 3.0's internal modules and how to integrate custom exploits with the Metasploit framework.
Before coming to workshop, I would sincerely request you to spare a couple of hours to prepare your laptop with some required software, and test it, so that we do not waste any class time in technical issues and troubleshooting.
LAPTOP READINESS
Hardware Requirements:
- Intel x86 hardware required.
- 512MB RAM required, at a minimum.
- Wired 10/100 Network card.
- CDROM drive (built in, or USB based)
- 5 GB free Hard disk space, at a minimum
*note: there is no Wireless LAN in the class, and therefore the Wired 10/100 card requirement is a MUST.
*note: tools and vulnerable images shall be distributed on CDs in the class. Therefore, the CDROM drive is a must too. Some sleek and ultra portable laptops do not have a CD drive. Please bring a USB CD drive along in that case, and make sure the drivers work.
Operating Systems (one of the following):
- Windows 2000 SP4/XP SP2 -OR-
- Linux kernel 2.4 or above
a) Windows 2000/XP operating system (this means NO Vista)
- Administrator access mandatory
- Ability to disable Anti-virus / Anti-spyware programs
- Ability to disable Windows Firewall or personal firewall
b) Linux kernel 2.4 or above:
- Kernel 2.4 or 2.6 required (check with uname -a)
- Root access mandatory
- Ability to use an X-windows based GUI environment
- Perl 5.8 should be available (check with perl -v)
- SSH should be available (check with ssh -v)
- Netcat (nc) should be available (chech with nc -h)
SOFTWARE TO BE PRE-INSTALLED
I would request you to download and install the following free software.
a) Firefox 2.0 browser (install as default) http://www.getfirefox.com/
b) Metasploit Framework 3.0 http://metasploit.com/
c) VMWare Player 2.0.x http://www.vmware.com/download/player/
*if you have a copy of the latest VMWare workstation (5 and above), you need not
d) Active Perl (for Windows users only) http://www.activestate.com/Products/ActivePerl/
Please ensure that the above items and installed and TESTED before bringing your laptops to class.