From: Daniel Miessler (daniel@dmiessler.com)
Date: Thu Jun 23 2005 - 23:40:06 EDT
On Jun 21, 2005, at 12:27 PM, securityfocus@benmansour.net wrote:
> You might also want to look at the following open source project :
>
> Metasploit
> http://www.metasploit.com/
> "The Metasploit Framework is an advanced open-source platform for
> developing, testing, and using exploit code."
>
> Except for the GUI, it offers comparable functionality and a broad
> choice of exploits.
Actually, while I think Metasploit is an impressive framework and use
it often, it lacks a main feature that IMPACT has. Namely, IMPACT is
able to do something they call "pivoting". This allows a tester to
select an exploit in the GUI, launch it, and then upload the IMPACT
agent to the newly compromised system.
From there, you now have the same GUI from which you can re-scan and
exploit from that vantage point; rinse and repeat. In my view, this
is what sets this tool apart from the others.
Of course, this isn't a replacement for a truly skilled pentester in
complex situations, but when the network is full of three year old
vulnerabilities and you're trying to make a point to a client's
management, it's quite effective.
-- Daniel R. Miessler M: daniel@dmiessler.com W: http://dmiessler.com G: 0x316BC712
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:29 EDT