最著名,最容易使用安全渗透测试工具包Metasploit,刚刚发布了新版本3.5。此版本包括白色和黑色帽子都使用的框架的许多预期更新。这是该工具的亮点。如果您以前从未使用过Metasploit,或者已经有一段时间了,我强烈建议您立即下载它并使用它来测试您的网络系统。它也是测试IPS传感器功效的绝佳工具。那么3.5版中有什么新功能?首先,Metasploit现在有613个利用模块和306个辅助模块可供选择。这是3.4中的551个漏洞和261个辅助mod的提高。新的利用包括最新的Adobe,Windows OS,Java和无线漏洞利用。Metasploit的GUI也是全新的。 The old web GUI has been deprecated and replaced with a slick new one. The new GUI is Java based and performs much faster than the previous one. Behind the new GUI lie improvements in the database backend, PostgreSQL. These make the database faster and better able to handle imports/exports. Tons of new bug fixes are in the 3.5 release. A definite focus of creating cleaner, more stable code is paying off dividends and this release proves that. Over 130 bugs have been fixed since release 3.4. The Nessus plug-in is now included in the standard build. This allows you to run full Nessus scans within Metasploit. Windows users also now get a tabbed native console as well. All in all the new Metasploit version feels faster and more stable. The addition of the new exploits proves that Metasploit isn't going anywhere. And true to their word, Metasploit is still FREE! What are your experiences with Metasploit? Any good tips to share with others? For more info on Metasploit go to: http://www.metasploit.com/ Read on Metasploit Pro (for fee) addition here: //m.amiribrahem.com/community/blog/one-year-later-metasploit-moves-open-core?source=nww_rss
这里提出的意见和信息是我的个人观点,而不是我的雇主的观点。我绝不是我的雇主的官方发言人。
Jamey Heary的更多信息: 信用卡掠夺:小偷如何在不知道的情况下窃取您的卡信息 Google Nexus One与十大手机安全要求 为什么你应该始终切碎登机牌 视频租赁记录比您的在线数据提供了更多的隐私保护 关于新SSL攻击的真相 2009 IT安全性的顶级城市传奇/A>去 Jamey的博客 有关安全性的更多文章。*
*
*
*
*
*