Metasploit Framework v3.3.2 released

In: Exploitation , Framework , Metasploit , Penetration testing & Ethical Hacking

16 December 2009

The Metasploit Framework is a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security researchers world-wide. The framework is written in the Ruby programming language and includes components written in C and assembler.

Metasploit Framework v3.3.2

Metasploit now has 463 exploit modules and 219 auxiliary modules (from 453 and 218 respectively in v3.3.1)
The Meterpreter payload is now multi-threaded, providing the ability have multiple outstanding requests at once
The Meterpreter pivoting is much more robust and stable for the common use cases.
The database subsystem now uses ActiveRecord migrations to create and update databases
The database API is now much more efficient due to improved query filters and delayed saves
The Oracle mixin and many of the modules have been updated and improved. The dbi module is no longer required.
The VNCInjection stage has been successfully tested on Windows 7 (running under WOW64).
The NeXpose Plugin can now launch scans against hosts already in the database (such as those found via Nmap).
The NeXpose Plugin now supports an alternate syntax to nexpose_connect that allows ’@’ and ’:’ in passwords
The XMLRPC interface now supports a RFC-compliant mode for integration with other products
The scanner modules support Nmap-style syntax for RHOSTS. This deprecates the 1.2.3.1-1.2.3.255 syntax.
The jobs command can now show detailed information about a background job (-i and -v).
This release fixes 42 bugs.

See the Issue Tracker

Post scriptum

Download Metasploit Framework v3.3.2

Compliance Mandates

Penetration testing & Ethical Hacking :
PCI DSS 11.3, SOX A13.3, GLBA 16 CFR Part 314.4 (c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001/27002 12.6, 15.2.2

Exploitation	1 May 2010 : DAVTest v1.0 - WebDAV Application 13 April 2010 : x5s Beta released - Automated XSS security testing assistant 12 April 2010 : Windows Autopwn (winAUTOPWN) v2.2 released 10 April 2010 : pvefindaddr v1.30 released 30 March 2010 : pvefindaddr updated to v1.27
Framework	31 March 2010 : W3AF v1.0-rc3 released 29 March 2010 : Vicnum v1.4 released 28 March 2010 : Zenamics released BinCrowd the First collaborative reverse engineering tool 27 March 2010 : OWASP Broken Web Applications v0.91rc1 available 26 March 2010 : SANS Investigative Forensic Toolkit (SIFT) Version 2.0 in the wild
Metasploit	1 April 2010 : Metasploit 3.3.3-Tokamac Released 23 December 2009 : Metasploit Framework updated to v3.3.3 16 December 2009 : Metasploit Framework v3.3.2 released 3 December 2009 : Metasploit Framework v3.3.1 released 17 November 2009 : Metasploit Framework v3.3 released (includes support for Windows 7)
Penetration testing & Ethical Hacking	10 May 2010 : SQLNinja v0.2.5 released! 25 April 2010 : (Paper) Pentesting Adobe Flex Applications (introducing new tool Blazentoo) 25 April 2010 : SIP Inspector v1.10 released 15 April 2010 : Ubuntu Pentest Edition v2.03 released 7 April 2010 : SFX-SQLi v1.1.3.2 available

Metasploit Framework v3.3.2 released

Post scriptum

Compliance Mandates

Related Articles

Follow us

Like us !

Most Read

Advertising

License

Categories

COMPANY

STANDARDS

RECENT POSTS

MENU