| Title |
CARAT - Configuration And Risk Assessment Toolkit, Metasploit within the Enterprise |
| Type |
Slides
|
| Tags |
web application
web
Metasploit
|
| Abstract |
The talk introduces our new open source extension for the well known Metasploit Framework, called CARAT. It uses Metasploits Meterpreter technology to communicate in between the client (to be scanned target) and the server (The Metasploit Server running the CARAT plugin), execute commands and consolidate the results. By introducing client specific job scheduling to Metasploit, CARAT is a Framework for automated configuration validation, security assessments and functional testing of components and applications. In contrary to a lot of other available frameworks, CARATs architecture is as simple as possible, this allows a great amount of flexibility to its users.
|
| Authors |
Max Moser
Philipp Schrödel
|
| Submitted |
January 12, 2011 |
| Rating |
Currently 0/5 stars (0 votes).
|
| Correlation |
| Linked to |
|
| Event |
Hashdays 2010
|
| Resource |
---
|
| Download |
| Source |
schroedel_moser_carat_metasploit_at_enterprise.pdf |
| Size |
570.7 KB |
| MD5 |
9194031eca5dc856b75c60554f464947
|
| SHA1 |
eb5fe9486aa368bc66880c29c4b61f1b02b33657
|
top
