jump to navigation

An amazing tool to test penetration on your application called Metasploit Framework July 21, 2011

Posted by shripal shah in Automation Testing, Software Testing.
Tags: , , , , , ,
add a comment

The Metasploit Framework (Msf) is a free, open source penetration testing solution developed by the open source community and Rapid7. I used this recently and found it very interesting to use. I also found a very good post by Karthik R who is a member of the NULL community. Karthik completed his training for EC-council CEH in December 2010, and is at present pursuing his final year of B.Tech in Information Technology, from National Institute of Technology, Surathkal.

Some of the useful terms you should be knowing before thinking of similar tool are; Vulnerability: A weakness in the target system, through which penetration can successfully occur.

Exploit: Once a vulnerability is known, an attacker takes advantage of it, and breaks into the system using a code/script known as an exploit.

Payload: This is a set of tasks initiated by the attacker subsequent to an exploit, in order to maintain access to the compromised system.

I am sure that in current world, its highly important to keep your product secure. I have faced hackers on one of my associates sites recently and Metasploit really helped me to understand the issues.

Thanks to Karthik on this post which will help many users around.