Upload File

hands on demonstration of kali linux, metasploit targeting

  • Home
  • Documents
  • Hands on Demonstration of Kali Linux, Metasploit Targeting
13
Hands on Demonstration of Kali Linux, Metasploit Targeting and Attacking Building Control Systems November 18, 2015 Federal Facilities Council Workshop: Cyber Resilience of Building Control Systems Bob Talbot ICS/SCADA Security Solutions Manager [email protected] 540 270-6088

Upload: others

Post on 03-Feb-2022

3 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Hands on Demonstration of Kali Linux, Metasploit Targeting

Hands on Demonstration of Kali

Linux, Metasploit

Targeting and Attacking Building Control

Systems

November 18, 2015

Federal Facilities Council Workshop: Cyber Resilience of Building Control Systems

Bob Talbot ICS/SCADA Security Solutions Manager [email protected] 540 270-6088

Page 2: Hands on Demonstration of Kali Linux, Metasploit Targeting

AGENDA

Control System Exploitation Vectors

Finding & Exploiting Vulnerabilities

Attack Methodology

Tools

Demo

Wrap-up

Page 3: Hands on Demonstration of Kali Linux, Metasploit Targeting

Control System Exploitation Vectors

Page 4: Hands on Demonstration of Kali Linux, Metasploit Targeting

Finding Vulnerabilities

Page 5: Hands on Demonstration of Kali Linux, Metasploit Targeting

Exploiting Vulnerabilities

Page 6: Hands on Demonstration of Kali Linux, Metasploit Targeting

Attack Methodology

Page 7: Hands on Demonstration of Kali Linux, Metasploit Targeting

Kali Linux

• Kali Linux is a free tool designed for forensics and penetration testing • Can be downloaded at: www.kali.org • Kali is a Debian-based linux distribution • -Can be run on a hard drive, live CD, or live USB • The distribution includes over 600 pen testing programs • Some of the most commonly used are: • -nmap—a port scanner (passive and active scanning) • -Wireshark—packet analyzer • -John the Ripper—password cracker • -Aircrack-ng—wireless LAN penetration testing suite • -Burp Suite—web application scanner • Also contains the Metasploit Framework—developing and executing

exploits

Page 8: Hands on Demonstration of Kali Linux, Metasploit Targeting

Tools

Page 9: Hands on Demonstration of Kali Linux, Metasploit Targeting

Network Mapper (nmap)

Page 10: Hands on Demonstration of Kali Linux, Metasploit Targeting

Packet Analyzer (Wireshark/tcpdump)

Page 11: Hands on Demonstration of Kali Linux, Metasploit Targeting

Demo

• BMS Attack

Page 12: Hands on Demonstration of Kali Linux, Metasploit Targeting

Questions?

Commercial Cybersecurity Division 5885 Trinity Way

Centreville, VA 20120 www.parsons.com

Page 13: Hands on Demonstration of Kali Linux, Metasploit Targeting

Thank You Please visit www.parsons.com/cyber for more information or to request a demonstration.

http://www.parsons.com/cyber

Certified Penetration Testing Engineer be using the latest tools, such as Saint, Metasploit through Kali Linux and Microsoft PowerShell. Besides utilizing ethical hacking methodologies,

The Network Security Test Lab - Startseite...Metasploit 286 Armitage 287 Metasploit Console 288 Metasploit Command‐Line Interface 289 Updating Metasploit 290 BeEF 290 Core Impact

Mastering Metasploit

Attacking Oracle Web Applications with Metasploit Oracle Web Applications with Metasploit Chris Gates -- carnal0wnage @carnal0wnage Introduction In 2009, Metasploit

Tytuł oryginału: Web Penetration Testing with Kali Linux ...pdf.helion.pl/kalil2/kalil2.pdf · Metasploit Browser Exploit 212 Tabnabbing Attack 212 Browser Exploitation Framework

Users Guide metasploit

Web Applications Penetration Testing - cse.iitd.ac.incse.iitd.ac.in/~cs1160315/WebPenetrationTesting.pdf · Getting familiar with Kali Linux for our project. Metasploit framework

Nethemba metasploit

Exploitation with Metasploit - Nethemba · PDF file Prologue Metasploit Project Metasploit Framework – open­source platform for exploit developing, testing and using exploit

Exploit Windows 7 Dengan Metasploit Di Kali Linux - Anherr Blog's

Metasploit Demo

Metasploit Unleashed

Metasploit ExpUserGuide(Book)

Metasploit 3.0 Developer’s Guide - UCCS College of ...cs.uccs.edu/~cs591/metasploit/developers_guide3_1.pdfThe Metasploit framework is an open-source exploitation framework that

CENTRAL UNIVERSITY OF PUNJAB BATHINDA CBS.pdfIntroduction to Metasploit: Metasploit framework, Metasploit Console, Payloads, Metrpreter, Introduction to Armitage, Installing and using

Metasploit penetration

Nexpose/ Metasploit

Metasploit Express User Guide - academy.delmar.eduacademy.delmar.edu/Courses/ITSC1358/.../Metasploit... · Metasploit Express User Guide Metasploit Express User Guide Release 3.6

Guida Metasploit Framework

Finalppt metasploit

Metasploit User Guide

Cpods training-metasploit

Metasploit - axiom.utm.utoronto.ca

Curso Metasploit

Metasploit FrameworkMetasploit_Framework

Mass Pwnage Metasploit

Metasploit Completo

Metasploit Framework Unleashed beyond Metasploit · PDF fileMetasploit Framework Unleashed –beyond Metasploit ... MSF Bind Payload

Metasploit (Module-1) - Getting Started With Metasploit

Metasploit Analysis PPT - Temple Fox MIScommunity.mis.temple.edu/.../files/2017/05/Metasploit-Analysis-PPT.pdfMetasloitAnalysis! Step 5: import Nessus report into Metasploit! Step

Pentest with Metasploit

CYBERSECURITY BOOT CAMP...Throughout the course, you will gain experience with a host of popular tools such as Wireshark, Kali Linux, Metasploit, Nessus, and more. In addition, you

Metasploit Unleashed Msfconsole

Abusing Windows Remote Management with Metasploit David Maloney Metasploit Software Engineer Rapid7

Hands on Demonstration of Kali Linux, Metasploit Targeting and