Integrations Posted on August 8, 2013 (April 26, 2023) Why is notepad.exe connecting to the internet? To the observant network defender, notepad.exe connecting to the internet is a key indicator of compromise. In this blog post, I’d like to explain why Read More
Integrations Posted on July 25, 2013 (May 3, 2022) Situational Awareness for Meterpreter Users Hacking involves managing a lot of contextual factors at one time. Most times, the default situation works and a tool will perform beautifully for you. Read More
Integrations Posted on July 17, 2013 (May 3, 2022) The Origin of Armitage’s Hail Mary Mass Exploitation Feature Several times now, an author has introduced Armitage, and the main value add to the hacking process that they emphasize is the “devastating” Hail Mary attack. Read More
Integrations Posted on June 28, 2013 (November 29, 2022) Staged Payloads – What Pen Testers Should Know The Metasploit Framework decouples exploits from the stuff that gets executed after successful exploitation (the payload). Payloads in the Metasploit Framework are also divided into Read More
Integrations Posted on April 21, 2013 (May 3, 2022) PSA: A Safety Lesson about Team Servers Here’s a fun anecdote for you. I usually run a Cobalt Strike team server the CCDC events and other exercises I go to. No problem. Read More
Integrations Posted on April 11, 2013 (May 3, 2022) Metasploit 4.6 – Now with less Open Source GUI Last week, I received an email from Tod B. at Rapid7 stating that the next binary installer of Metasploit would ship without Armitage and msfgui. Read More
Integrations Posted on March 28, 2013 (May 3, 2022) Pivoting through SSH This is a pretty quick tip, but still useful. When you SSH to a host, you may use the -D flag to setup “dynamic” application-level Read More
Integrations Posted on March 13, 2013 (May 3, 2022) Missing in Action: Armitage on Kali Linux As you may know, the highly anticipated Kali Linux is now available. If you’ve fired it up, you may notice it’s missing a familiar tool. Read More
Integrations Posted on March 13, 2013 (May 3, 2022) HOWTO Integrate third-party tools with Cortana One of the goals of Cortana is to give you the ability to integrate third-party tools and agents into Armitage and Cobalt Strike’s red team Read More
Integrations Posted on February 27, 2013 (May 3, 2022) Deprecation Notice: Metasploit source checkouts will NO LONGER update over SVN – Move to Git The official home of the Metasploit Framework’s source code has been github for a while now. Ever since the move to Git, Rapid7 has operated Read More
