Security Basics mailing list archives

Re: Automated penetration test

From: Abhishek Kumar <abhishek.luck () gmail com>
Date: Fri, 3 Apr 2009 06:45:04 +0530

Yes, Automated pentest with all the possible exploits are possible .
Though there is a limitation of only getting
command shell if exploit is successful.

find more details in the link.
http://blog.metasploit.com/2006/09/metasploit-30-automated-exploitation.html

abhi

On Thu, Apr 2, 2009 at 8:50 AM, >p3dRø< <p.valera () pucp edu pe> wrote:



Hello,

I need to make an automated penetration test in a network.

I always find tutorials about one especific exploit, in metasploit framework,
for example. I need a tutorial for automated test with all the exploits as
possible just especifying the subnet, for example 192.168.1.0/24. I mean, is
there a program that could do this? :

./program -allexploits 192.168.1.0/24

or in few steps do that ? (text mode, web? )

The tool doesnt matter: backtrack, metasploit, but I need to launch the
automated penetration test as I mentioned.

Someone knows a good tutorial or link about that ?

Thanks in advance,
Pedro




------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

No time or budget for traveling to a training course in this fiscal year? Check out the online information security 
courses available at InfoSec Institute. More than a boring "talking head", train in our virtual labs for a total 
hands-on training experience. Get the certs you need: CEH, CPT, CEPT, CISA, CISSP, CISM

http://www.infosecinstitute.com/request_online_training.html
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

No time or budget for traveling to a training course in this fiscal year? Check out the online information security 
courses available at InfoSec Institute. More than a boring "talking head", train in our virtual labs for a total 
hands-on training experience. Get the certs you need: CEH, CPT, CEPT, CISA, CISSP, CISM

http://www.infosecinstitute.com/request_online_training.html
------------------------------------------------------------------------

Current thread:

Automated penetration test p3dRø (Apr 02)
- RE: Automated penetration test David Gillett (Apr 03)
  - RE: Automated penetration test Rui Pereira (WCG) (Apr 03)
- RE: Automated penetration test leegarner (Apr 03)
- Re: Automated penetration test Nikhil Wagholikar (Apr 03)
- Re: Automated penetration test Nicholas Harvey (Apr 03)
- <Possible follow-ups>
- Automated penetration test p3dRø (Apr 02)
  - Re: Automated penetration test Abhishek Kumar (Apr 03)
  - Re: Automated penetration test τ∂υƒιφ * (Apr 03)
  - Re: Automated penetration test Sujit Ghosal (Apr 03)
- Re: Re: Automated penetration test jeevanullas (Apr 20)