Electronic Books

Click Finish.
430
Practical Hacking Techniques and Countermeasures
Click on Start/Programs/Metasploit Framework/MSFConsole to start
the Metasploit application.
The Metasploit application will start.
*Note: When Metasploit starts, it tells you not only the version you are running, but
also the number of exploits and payloads included with that version. In version
2.5 Metasploit includes 105 exploits and 74 payloads.
Vulnerability Scanning
431
To see what exploits are included, type show exploits and press Enter.
The included exploits will be listed. The left column identifies the name
of the exploit and the right column gives a brief description of the exploit.
*Note: All exploits will scroll by quickly. For the purposes of this lab, I have scrolled up
the screen to show all of the exploits from the top down.
432
Practical Hacking Techniques and Countermeasures
By scrolling down the screen you can see that there are more exploits available.
The last screenshot identifies the remaining exploits available.
Vulnerability Scanning
433
For this example, we will use the Microsoft Plug-and-Play Remote Buffer
Overflow exploit. This is done by typing:
use ms05_039_pnp
*Note: Why use the Microsoft Plug-and-Play Remote Buffer Overflow? I knew the
target was vulnerable because of the results I received from Lab 60 (SAINT)
as this exploit was one of the 14 OS vulnerabilities listed from that lab.
434
Practical Hacking Techniques and Countermeasures
Once the exploit has been identified, you must determine what payload
to use with the exploit chosen.


Pages:
138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162