Pwning Using Openvas And Metasploit Db_Autopwn
|
|
|
||||||||||||
Description:
OpenVAS stands for Open Vulnerability Assessment System and is a network security scanner with associated tools like a graphical user front-end. The core component is a server with a set of network vulnerability tests (NVTs) to detect security problems in remote systems and applications.
In this exellent demo, ogre25 demonstrates how to use a combination of Openvas and Metasploit to Pwn a victim host. He uses a Backtrack 4 distro and begins by updating Openvas with the latest modules and vulnerabilities. Then he runs a scan on the victim and saves the results of the scan in Nessus nbe format. He then proceeds to load these saved results into Metasploit and fires the Db_Autopwn module to compromise the victim host. Game Over!
In this exellent demo, ogre25 demonstrates how to use a combination of Openvas and Metasploit to Pwn a victim host. He uses a Backtrack 4 distro and begins by updating Openvas with the latest modules and vulnerabilities. Then he runs a scan on the victim and saves the results of the scan in Nessus nbe format. He then proceeds to load these saved results into Metasploit and fires the Db_Autopwn module to compromise the victim host. Game Over!