2. Seth Law Bio
Seth Law is a Principal Consultant at FishNet Security, specializing in Application Security. He has specialized in information security since 2004 and enjoys researching complex vulnerabilities and exploits. He has worked previously as an unix administrator, coder, and security administrator. Seth is currently based in Salt Lake City where he lives for the winter snowboarding and summer climbing.
3. Chris Gates Bio
âBlogger-- >carnal0wnage.attackresearch.com
âMetasploit Project
âAttackResearch
âSecurity Twit â carnal0wnage
4. Ken Johnson Bio
Blog: cktricky.blogspot.com
BtoD
Dirchex/Dirsnatch
NoVA Hacker
7. What about Metasploit?
âEducational, fun, challenging
âUnrestricted core development
âWeb 2.0
âAppSec community involvement
âWe want more pwnage
12. Storage
âDB Based Exploits and Payloads, SQLite3
âFile based modules
âDeciding which storage to use...
13. WebStack
âHosts RFI Shell
âLFILE / LHTML
âInstances limited by port numbers
âAbility to manage
âVarious uses for WebStack...
14. WebStack
Potential uses for WebStack, conceptualPhish and reportUser-Agent detection, redirection (mobile pwnage) Java Version detection and subsequent processingLogin form overlay, snatch credentials
15. WebStack
ExamplesRespond to simple webdav requestsJava JNLP vuln via webdavDo âstuffâ based on user agent receivedServe up an empty applet to determine java version, then do âstuffâ PhishingGeneral ability to respond to requests...
17. wXf Application Extensions (wAx)
âMeans of extending what wXf can do
âContains web libraries, re-usable console libraries. Anything that can be re-used should be contained in wAx
âGem inclusion, version control for wrappers
19. Planned/Future Libraries
âRequirements
âMust be tested
âLicense must allow for inclusion
âHas to be stable
âMust have a use case
âExamples
âJSON
âFLASH/AMF
âDB Translation (candidate SEQUEL)
20. *NixMac OSXRuby 1.8.6, 1.8.7 and testing 1.9.1 (plan for 1.9) HIGHLYdependent on libxml2Requirement for mechanize/nokogiri anyway
Support Platform, Architecture
22. ModulesAuxiliary, currently, is the only file based module'Assists', think 'mixins' âWrappersShims provide interoperability and flexible portingAllows you to do send_request_cgi, print_statusGlobal and Local Options
27. Auxiliary
âuser_agent_test
âPort of Chris John Riley's user agent tester
âdir_trav_fuzz
âFuzz http services for directory traversals
âpassive_enum
âGather info based on return server headers
âServer version from headers
âWeb service toolkits id from cookies, x- powered-by, etc