Penetration Testing mailing list archives
Re: Core Impact
From: Daniele Milan <milan.daniele () gmail com>
Date: Fri, 24 Jun 2005 10:52:32 +0000
On 6/24/05, Daniel Miessler <daniel () dmiessler com> wrote:
Actually, while I think Metasploit is an impressive framework and use it often, it lacks a main feature that IMPACT has. Namely, IMPACT is able to do something they call "pivoting". This allows a tester to select an exploit in the GUI, launch it, and then upload the IMPACT agent to the newly compromised system.
I think you can come up with something similar using the Meterpreter framework you can find in Metasploit. The only difference here is that you don't have the agent ready to use, but you have to develop it (lots of fun!) ;) However IMPACT seems to be the most mature and feature loaded framework you can ask for nowadays. have a good day, Daniele Milan -- In theory, there's no difference between theory and practice. But, in practice, there is. (Jan L.A. van de Snepscheut) GPG key: http://tinybyte.altervista.org/tinybyte.asc
Current thread:
- Core Impact Security Professional (Jun 21)
- Re: Core Impact Chris Raymond (Jun 21)
- RE: Core Impact boxerb (Jun 21)
- Re: Core Impact David Eduardo Acosta RodrÃguez (Jun 21)
- Re: Core Impact paul dansing (Jun 22)
- <Possible follow-ups>
- Re: Core Impact securityfocus (Jun 21)
- Re: Core Impact Daniel Miessler (Jun 24)
- Re: Core Impact Daniele Milan (Jun 24)
- Re: Core Impact Chris Byrd (Jun 24)
- Re: Core Impact nick johnson (Jun 24)
- Re: Core Impact Daniel Miessler (Jun 24)
- RE: Core Impact Andre Protas (Jun 21)
- Re: Core Impact Christoph Puppe (Jun 22)
- Core Impact Security Professional (Jun 23)