Readings Summary: 

After reading materials about Metasploit Fundamentals, Information Gathering, Vulnerability Scanning, Exploit Development, Web App Exploit Development, Client Side Attacks and Auxiliary Module Reference, MSF Post Exploitation, Meterpreter Scripting, and Maintaining Access, I concluded how powerful Metasploit Framework is given its customization capabilities and number of exploits in database. Moreover, I found that there is VM version of Metasploitable-2 machine that is designed to be Intentionally Vulnerable Metasploitable Lab Environment. In addition, NeXpose can be embedded into MSFConsole itself and ran from within MSF to perform advanced scans. Also, it is important to note that both attacking machine (Kali Linux) and a victim machine (metasploitable 2) must be setup in secured isolated VM environment to avoid exposure to internal network. While Metaspolit has its own prebuilt scripts, it is possible to write your own scripts with Meterpreter.

Questions to the Class:

1. When comparing NeXpose, Nessus and Metasploit, which tool is better in terms of Security Audit Reporting and scan capabilities?

2.  When installing NeXpose on KALI 2.0, received the installation failure reason below. Has anyone received the same error?

“[Fail] – An unsupported kernel version 4.0.0-kali1-amd64 was detected.”

In the News:

Azerbaijani Hackers have hacked NATO-Armenia and embassy websites in 40 countries giving a powerful reply to the Armenian hackers.

Read more here: https://www.hackread.com/azerbaijani-hackers-defac-nato-armenia-embassy-sites/

Hello Everyone,

I would like to share with you some useful information so that you guys will not need to deal with setup difficulties and diving into google search trying to find answers.

Basically, I experienced some issues when installing Alpha Wireless Card (AWUS036ACH) on KALI LINUX since it would not install automatically once plugged into USB port. Further, I discovered that certain drivers would need to be downloaded and installed manually using certain commands in Terminal. While you may have a different Alpha Card Model, you may still want to apply setup process below in case if you have any setup issues.

After complete research, testing and verification, I wrote a Step-By-Step setup instructions below to make life easier for all of us.

Setup procedure for installing drivers for Alfa Wireless Adapter:

Note: Adapter must be plugged into USB port only after installaing the drivers as outlined below.

Setup Steps:

1. Download driver here:

https://github.com/abperiasamy/rtl8812AU_8821AU_linux.

2. In KALI Linux, navigate to /etc/apt folder and edit sources.list with the following sources:

deb http://http.kali.org/kali sana main non-free contrib
deb http://security.kali.org/kali-security sana/updates main contrib non-free
deb-src http://http.kali.org/kali sana main non-free contrib
deb-src http://security.kali.org/kali-security sana/updates main contrib non-free

3. Open Terminal and run commands below:

apt-get update
apt-get upgrade
apt-get install -y linux-headers-$(uname -r)

4. back into Terminal, extact the drivers and navigate to extraced driver’s folder

5. Run command below

make

6. After that completes type:

make install

7. Plug in the Alfa adapter to USB port and restart Kali

8. Open terminal and run IFCONFIG, where you should see WLAN0 adapter.
If no IP Address exists, navigate to System Settings Wireless Connection and connect Alfa Adapter to desired SSID……..now, IFCONFIG should show IP Address for WLAN0 adapter
— THE END —-

The reading for this week was a pretty comprehensive tutorial/manual for metasploit. I thought it was very good and organized rather well. I thought it was nice and simple, didn’t get too into the weeds. It was very good for people at our level of experience with the software. I’ve been pleasantly surprised so far by how straight forward metasploit is. A tool like this can seem intimidating but when it comes time to use it, it seems rather simple.

My question for the class: since some of us tried metasploit last semester for fun, were there any resources that you found beneficial?

Article: http://www.zdnet.com/article/teslacrypt-vulnerability-exposes-ransomed-files-to-free-cracking/

I thought this article was funny because it shows that sometimes the bad guys don’t execute very well and it leaves an embarrassing failure like this one behind. This ransomware can be decrypted without anyone needing to “pay up” for the stolen data.

Assigned readings:

Metasploit Unleashed allows various functions, such as the abilities to conduct MSF Post Exploitation,
Meterpreter Scripting, and Maintaining Access. MSF Post Exploitation allows the user to run privilege escalation, event log management, packet sniffing, pivoting, screen capture, searching for content, etc. For instance, Metasploit uses a script that allows the usage of different techniques to gain access of the System level privileges on the remote system. Meyerpreter Scripting allows the user to look for existing scripts as well as write custom scripts. Lastly, Maintaining Access is composed of keylogging, meterpreter backdoor, and persistent backdoor. Being able to maintain access is key to further examine the target network. Once access is gained into the system, allows you to pivot from one system to another, gain information about the users’ activities by monitoring keystrokes, impersonating users with captured tokens, etc.

Question for the class:

Have you ran any scripts as described in the above techniques before and if so, how successful were you gaining useful information?

In the news:

“Ukraine Mounts Investigation of Kiev Airport Cyberattack”
The cyberattack was related to the BlackEnergy malware attacks that recently targeted Ukranian infrastructure facilities which impacted more than 80,000 customers. This new attack involved a spearphishing email, decoy document, or both, and it was conducted by the Sandworm Team (a team that has been targeting various worldwide entities, such as NATO, EU, etc). Attacking the Kiev Airport was determined by the C2 servers which originated in Russia and disrupting air traffic control system.
For additional information regarding this article, please click here.

Reading: Metasploit-Unleashed: The Ultimate guide to the Metasploit Framework, Offensive Security

The Metasploit Framework is a stable platform for executing information security exploits providing a base for developing and automating new discovery techniques and attack methods for compromising the confidentiality, integrity, and availability of IT infrastructure. Coded in Ruby, Metasploit’s capabilities can be further extended with new components written in Ruby, assembly language and C.  IT network security professionals and researchers use Metasploit to conduct a wide variety of penetration tests and exploits. System administrators use it to very patch installations, and product vendors use it to perform regression testing.  The Metasploit Framework is a modular system that will enable us to learn how to combine exploits with payloads within the following workflow:

• Identify and understand the configuration and vulnerabilities of the target system including its operating system version and available network services
• Choosing an exploit to use in taking advantage of the target system through a bug/vulnerability in one of its components
• Choosing and configuring a delivery mechanism and payload code to execute on the target system
• Choosing the encoding technique to get by the IDS/IPS without detection
• Executing the exploit, accomplishing objectives and covering tracks

Question for Class:

While intended by founder H.D. Moore and corporate provider Rapid7 to be used by white hackers to support offensive information security workers, what are the ethical implications of making Metasploit’s capabilities equality available to criminals for nefarious purposes?

In The News: “Endpoint Exploitation Trends 2015, Bromium Labs Research Brief” January 14, 2016, Bromium.com.

In 2015: exploitation for hire came under public scrutiny with breach and exposure of techniques used by Hacking Team, malvertising – spread of malware through online advertising networks found in 27% of the top 1,000 internet advertising websites, and while overall vulnerabilities increased by 60% – those specifically targeting Adobe Flash increased by 333%. The number of exploit kits available with capabilities to bypass standard malware detection techniques also rose in 2015, as did the use of IPS evading malware containing Word documents in phishing emails, and the crypto-ransomware business.  http://www.bromium.com/sites/default/files/rpt-bromium-threat-report-2015-us-en.pdf

Assigned readings:

The Metasploit Unleashed (MSFU) is an open source penetration tool. This ethical training course also has the objective to provide security awareness for the underprivileged children in East Africa. The Metasploit framework is a very useful auditing tool with an array of commercial grade exploits and an extensive exploit development environment, all the way to network information gathering tools and web vulnerability plugins. Examples of various tests that can be conducted once Metasploit has been properly installed include port scanning, hunting for MSSQL, service identification, password sniffing and SNMP sweeping. It also allows you to write your own scanner and windows patch enumeration.

Question for the class:

Have you used the Metasploit tool before? If so, what was experience and how successful were the outcomes each time you ran your scan?

In the news:
“Time Warner Cable says up to 320,000 customer’s data may have been stolen.”

The Federal Bureau of Investigation notified Time Warner Cable Inc. that up to 320,000 of its customers email password have been compromised. This was accomplished through a malware download during a phishing attack or through data breaches of other companies that stored Time Warner Cable’s customer information (i.e.: email addresses). The company encourages its customers to change the email password immediately to risk any similar future breaches.

For more information regarding this article, please click here.

Welcome.  Here is the first presentation.

Advanced Penetration Testing -Week-1

Welcome to Temple Fox MIS. This is your first post. Edit or delete it, then start blogging!