The talk introduces our new open source extension for the well known Metasploit Framework, called CARAT. It uses Metasploits Meterpreter technology to communicate in between the client (to be scanned target) and the server (The Metasploit Server running the CARAT plugin), execute commands and consolidate the results. By introducing client specific job scheduling to Metasploit, CARAT is a Framework for automated configuration validation, security assessments and functional testing of components and applications. In contrary to a lot of other available frameworks, CARATs architecture is as simple as possible, this allows a great amount of flexibility to its users.
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.