| 词条 | Metasploit Project |
| 释义 |
| name = Metasploit | logo = Metasploit logo and wordmark.png | screenshot = Metasploit-Community.png | screenshot size = 300px | caption = Metasploit Community showing three hosts, two of which were compromised by an exploit | developer = Rapid7 LLC | latest release version = 5.0.0[1] | latest release date = {{release date|2019|1|10}} | programming language = Ruby | operating system = Cross-platform | genre = Security | license = Framework: BSD,[2] Community/Express/Pro: Proprietary | website = {{URL|https://www.metasploit.com/}} }} The Metasploit Project is a computer security project that provides information about security vulnerabilities and aids in penetration testing and IDS signature development. It is owned by Boston, Massachusetts-based security company Rapid7. Its best-known sub-project is the open-source[2] Metasploit Framework, a tool for developing and executing exploit code against a remote target machine. Other important sub-projects include the Opcode Database, shellcode archive and related research. The Metasploit Project includes anti-forensic and evasion tools, some of which are built into the Metasploit Framework. Metasploit is pre-installed in the Kali Linux operating system.[3] HistoryMetasploit was created by H. D. Moore in 2003 as a portable network tool using Perl. By 2007, the Metasploit Framework had been completely rewritten in Ruby.[4] On October 21, 2009, the Metasploit Project announced[5] that it had been acquired by Rapid7, a security company that provides unified vulnerability management solutions. Like comparable commercial products such as Immunity's Canvas or Core Security Technologies' Core Impact, Metasploit can be used to test the vulnerability of computer systems or to break into remote systems. Like many information security tools, Metasploit can be used for both legitimate and unauthorized activities. Since the acquisition of the Metasploit Framework, Rapid7 has added two open core proprietary editions called Metasploit Express and Metasploit Pro. Metasploit's emerging position as the de facto exploit development framework[6] led to the release of software vulnerability advisories often accompanied[7] by a third party Metasploit exploit module that highlights the exploitability, risk and remediation of that particular bug.[8][9] Metasploit 3.0 began to include fuzzing tools, used to discover software vulnerabilities, rather than just exploits for known bugs. This avenue can be seen with the integration of the lorcon wireless (802.11) toolset into Metasploit 3.0 in November 2006. Metasploit 4.0 was released in August 2011. Metasploit FrameworkThe basic steps for exploiting a system using the Framework include:
This modular approach – allowing the combination of any exploit with any payload – is the major advantage of the Framework. It facilitates the tasks of attackers, exploit writers and payload writers. Metasploit runs on Unix (including Linux and Mac OS X) and on Windows. The Metasploit Framework can be extended to use add-ons in multiple languages. To choose an exploit and payload, some information about the target system is needed, such as operating system version and installed network services. This information can be gleaned with port scanning and OS fingerprinting tools such as Nmap. Vulnerability scanners such as Nexpose, Nessus, and OpenVAS can detect target system vulnerabilities. Metasploit can import vulnerability scanner data and compare the identified vulnerabilities to existing exploit modules for accurate exploitation.[10] Metasploit interfacesThere are several interfaces for Metasploit available. The most popular are maintained by Rapid7 and Strategic Cyber LLC.[11] Metasploit Framework EditionThe free version. It contains a command line interface, third-party import, manual exploitation and manual brute forcing. This free version of the Metasploit project also includes Zenmap, a well known ports-scanner and a compiler for Ruby, the language in which this version of Metasploit was written. [11]Metasploit Community EditionIn October 2011, Rapid7 released Metasploit Community Edition, a free, web-based user interface for Metasploit. Metasploit Community is based on the commercial functionality of the paid-for editions with a reduced set of features, including network discovery, module browsing and manual exploitation. Metasploit Community is included in the main installer. Metasploit ExpressIn April 2010, Rapid7 released Metasploit Express, an open-core commercial edition for security teams who need to verify vulnerabilities. It offers a graphical user interface, integrates nmap for discovery, and adds smart bruteforcing as well as automated evidence collection. Metasploit ProIn October 2010, Rapid7 added Metasploit Pro, an open-core commercial Metasploit edition for penetration testers. Metasploit Pro adds onto Metasploit Express with features such as Quick Start Wizards/MetaModules, building and managing social engineering campaigns, web application testing, an advanced Pro Console, dynamic payloads for anti-virus evasion, integration with Nexpose for ad-hoc vulnerability scans, and VPN pivoting. ArmitageArmitage is a graphical cyber attack management tool for the Metasploit Project that visualizes targets and recommends exploits. It is a free and open source network security tool notable for its contributions to red team collaboration allowing for shared sessions, data, and communication through a single Metasploit instance.[12]Cobalt StrikeCobalt Strike is a collection of threat emulation tools provided by Strategic Cyber LLC to work with the Metasploit Framework.[13] Cobalt Strike includes all features of Armitage and adds post-exploitation tools, in addition to report generation features.[14] ExploitsMetasploit currently has over 1677 exploits, organized under the following platforms: AIX, Android, BSD, BSDi, Cisco, Firefox, FreeBSD, HPUX, Irix, Java, JavaScript, Linux, mainframe, multi (applicable to multiple platforms), NetBSD, NetWare, nodejs, OpenBSD, OSX, PHP, Python, R, Ruby, Solaris, Unix, and Windows. PayloadsMetasploit currently has over 495 payloads. Some of them are:
ContributorsMetasploit Framework operates as an open-source project and accepts contributions from the community through GitHub.com pull requests.[15] Submissions are reviewed by a team consisting of both Rapid7 employees and senior external contributors. The majority of contributions add new modules, such as exploits or scanners.[16] List of original developers:
See also{{Portal|Computer Security|Computing|Free and open-source software}}
References1. ^{{cite web|url=https://github.com/rapid7/metasploit-framework/releases|title=Releases - rapid7/metasploit-framework}} 2. ^1 {{cite web|title=3-clause BSD license|url=https://github.com/rapid7/metasploit-framework/blob/master/LICENSE|accessdate=2013-06-24}} 3. ^{{Cite web|url=https://tools.kali.org/tools-listing|title=Kali Linux Tools Listing {{!}} Penetration Testing Tools|last=|first=|date=|website=tools.kali.org|archive-url=|archive-date=|dead-url=|access-date=2019-02-09}} 4. ^{{cite web|url=https://blgtechn.blogspot.com/2012/08/metasploit.html|title=Metasploit|publisher=|accessdate=18 February 2015}} 5. ^{{cite web|url=http://www.rapid7.com/metasploit-announcement.jsp|title=Rapid7 Press Release|work=Rapid7|accessdate=18 February 2015}} 6. ^{{cite web|url=http://sectools.org/sploits.html|title=Vulnerability exploitation tools – SecTools Top Network Security Tools|publisher=|accessdate=18 February 2015}} 7. ^{{Cite web|url=https://www.exploit-db.com/author/?a=3211|title=Metasploit|last=Metasploit|website=www.exploit-db.com|access-date=2017-01-14}} 8. ^{{cite news|url=http://archives.neohapsis.com/archives/vulnwatch/2005-q4/0074.html |title=ACSSEC-2005-11-25-0x1 VMWare Workstation 5.5.0 <= build-18007 GSX Server Variants And Others |date=December 20, 2005 |deadurl=yes |archiveurl=https://web.archive.org/web/20070107145900/http://archives.neohapsis.com/archives/vulnwatch/2005-q4/0074.html |archivedate=2007-01-07 |df= }} 9. ^{{cite news|url=http://projects.info-pull.com/mokb/MOKB-11-11-2006.html |archive-url=https://archive.is/20130103221440/http://projects.info-pull.com/mokb/MOKB-11-11-2006.html |dead-url=yes |archive-date=January 3, 2013 |title=Month of Kernel Bugs – Broadcom Wireless Driver Probe Response SSID Overflow |date=November 11, 2006 |df= }} 10. ^{{cite web|url=https://www.metasploit.com/download|title=Penetration Testing Tool, Metasploit, Free Download - Rapid7|work=Rapid7|accessdate=18 February 2015}} 11. ^1 {{cite web|title=Metasploit editions|url=https://www.rapid7.com/products/metasploit/editions-and-features.jsp|work=rapid7.com|publisher=rapid7|accessdate=16 February 2013}} 12. ^{{cite news|title=Armitage A GUI for Metasploit|url=https://code.google.com/p/armitage/|publisher=Strategic Cyber LLC|accessdate=2013-11-18}} 13. ^{{Cite web|url=https://cobaltstrike.com/|title=Adversary Simulation and Red Team Operations Software - Cobalt Strike|website=cobaltstrike.com|access-date=2019-01-22}} 14. ^{{cite news|title=Armitage vs Cobalt Hooked Strike|url=http://www.advancedpentest.com/help-armitage-vs-cobaltstrike|publisher=Strategic Cyber LLC|accessdate=2013-11-18}} 15. ^{{Cite web|url=https://github.com/rapid7/metasploit-framework/blob/master/CONTRIBUTING.md|title=rapid7/metasploit-framework|website=GitHub|access-date=2017-01-14}} 16. ^{{cite news|title=Contributing to Metasploit|url=https://github.com/rapid7/metasploit-framework/wiki/Contributing-to-Metasploit|publisher=Rapid7 LLC|accessdate=2014-06-09}} Further reading
External links{{Commons}}{{Wikibooks}}
16 : Anti-forensic software|Computer network security|Computer security exploits|Security testing tools|Cryptographic attacks|Free and open-source software organizations|Cross-platform free software|Free security software|Free software programmed in Ruby|Injection exploits|Software testing|Web security exploits|Windows security software|MacOS security software|Unix network-related software|Pentesting software toolkits |
| 随便看 |
|
开放百科全书收录14589846条英语、德语、日语等多语种百科知识,基本涵盖了大多数领域的百科知识,是一部内容自由、开放的电子版国际百科全书。