Security Notes, News, and Thoughts

Sharing data remotely through Metasploit

I've been working on some more XMLRPC stuff for Metasploit, and I wanted to share just a teaser for what is to come in the future. I'm working on some more integration between tools, but for now I have written a db module for Metasploit's XMLRPC engine which allows remote processes to get information from the database. Below is a quick demo of a remote host, having done a scan with nmap uploading remotely the data into Metasploit for it to be acted on. This of course is just the tip of the iceberg, as this API will allow for automated reporting, data sharing across tools, for Metasploit to be used as the central knowledge repository for various tools across multiple testers machines to store data.

I'm still waiting to hear back from Defcon and B-Sides Las Vegas, but if my talk gets accepted either place, you will get to see a whole lot more.

Sorry for the blurry, I'll do better next time:

Sharing data between hosts with Metasploit from Ryan Linn on Vimeo.


Adam Brudo said...

That is a great service if you want to control timing and sequencing of the data transfer.
If you want to perform additional data processing or logging on a different target.
Still, dealing with the confidential files sharing with people both inside and outside of your organization, the only my advice is to work with online data room providers. Web-based dataroom application is run on state-of-the-art technology which overcomes any limitations imposed by a physical data room. It enables you to process transactions quickly and securely.

Toby Valentine said...

Thanks for this video, it's very clear.
Keep going with your blog, it's really interesting and useful.

There was an error in this gadget