The Metasploit Framework

Metasploit Framework Videos

[Flash Video] NNP posted a video to milw0rm.com that demonstrates how to use the db_autopwn command to automatically exploit a network of servers.

[Flash Video] (mirror) - Chris Gates of LearnSecurityOnline.com uses auxiliary modules to locate a Microsoft SQL Server installation and login.

[Flash Video] (mirror) - Chris Gates of LearnSecurityOnline.com uses the VNC Injection payload to break a locked Windows desktop and monitor the user.

[Flash Video] (mirror) - Chris Gates of LearnSecurityOnline.com uses the Meterpreter to place a netcat backdoor via the registry and reboot the system.

[Flash Video] (mirror) - Chris Gates of LearnSecurityOnline.com demonstrates many features of the Meterpreter payload.

Metasploit Framework Screen Shots

Metasploit Windows Installer	MSFWeb in IE 7	MSFWeb in IE 7
Metasploit Console	Metasploit Help	Module Info
VNC Injection	VNC Injection	VNC Injection
Meterpreter in IRB Mode	Meterpreter Timestomp	Downloading with Meterpreter
Remote Process Migration	Dumping SAM Hashes	Colorful Session Logging
Backgrounded Exploit Session		Nop and Payload Generation

"If you do publish then, worst case, all that will be accomplished is that you may cause a business somewhere to be compromised, and they may turn to you or your company for compensation for their financial losses. In the best case, due to September 11, 2001, you may end up on various government agencies' "watch lists," and your potential career in the computer business may be altered in ways you did not intend. " - Dan Grove (HP S/W Security Team)