CARAT - Configuration And Risk Assessment Toolkit, Metasploit within the Enterprise
- Type
- Slides
- Tags
- Metasploit, web, web application
- Authors
- Max Moser, Philipp Schrödel
- Event
- Hashdays 2010
- Indexed on
- Mar 26, 2013
- URL
- https://www.hashdays.ch/assets/files/slides/schroedel_moser_carat_metasploit_at_enterprise.pdf
- File name
- schroedel_moser_carat_metasploit_at_enterprise.pdf
- File size
- 570.7 KB
- MD5
- 9194031eca5dc856b75c60554f464947
- SHA1
- eb5fe9486aa368bc66880c29c4b61f1b02b33657
The talk introduces our new open source extension for the well known Metasploit Framework, called CARAT. It uses Metasploits Meterpreter technology to communicate in between the client (to be scanned target) and the server (The Metasploit Server running the CARAT plugin), execute commands and consolidate the results. By introducing client specific job scheduling to Metasploit, CARAT is a Framework for automated configuration validation, security assessments and functional testing of components and applications. In contrary to a lot of other available frameworks, CARATs architecture is as simple as possible, this allows a great amount of flexibility to its users.
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
