Penetration Testing Platform Introduces Interface for SIEM Integration, Public and Private Cloud Deployments, Brings New SCADA Exploits and More
Rapid7, a Boston-based provider of vulnerability management and penetration testing solutions, today announced the launch of Metasploit Pro 4.0, the latest edition of its penetration testing solution.
Metasploit Pro 4.0 now integrates with more than a dozen vulnerability management systems and Web application scanners, and can send data to directly to SIEM systems.
Metasploit 4.0 brings the inclusion of 36 new exploits, 27 new post-exploitation modules and 12 auxiliary modules, including nine new SCADA exploits, improved 64-bit Linux payloads, exploits for Firefox and Internet Explorer, full-HTTPS and HTTP Meterpreter stagers, and post-exploitation modules for dumping passwords from Outlook, WSFTP, CoreFTP, SmartFTP, TotalCommander, BitCoin and many other applications.
Metasploit Pro 4.0 enables enterprises to conduct broader and more frequent security audits to prevent data breaches and enables security teams to increase their productivity by spending less time fixing less-important vulnerabilities and have an effective way to verify that remediation was successful.
“Organizations looking to reduce data breach risks need smarter and more efficient security risk intelligence. One way to get this is through frequent, broad-scale penetration testing,” said HD Moore, Rapid7’s chief security officer and Metasploit chief architect. “The new features of Metasploit Pro 4.0 make this a practical reality for defenders by automating penetration testing workflow steps, better integrating with vulnerability management solutions and introducing new interfaces for SIEM systems.”
The new capabilities in Metasploit Pro 4.0 now enable users to:
Integrate security risk intelligence
• Integrate Metasploit Pro with security information and event management (SIEM) systems to improve your dashboard information
• Import scan results from more than a dozen third-party Web application scanners and vulnerability assessment tools to prioritize vulnerabilities and eliminate false positives
• Increase security team productivity by integrating Metasploit Pro with NeXpose vulnerability management solutions to directly access vulnerabilities that need to be verified
• Automate verification of vulnerabilities and reporting through new programming interface and XML results
• Document compliance with FISMA reports that map findings to controls and requirements
Automate penetration testing steps
• Automatically gather evidence with customizable post-exploitation macros
• Re-establish dropped shells with persistent sessions and listeners
• Replay previously successful attacks to verify remediation
• Easily crack encrypted passwords offline
• Remotely control Metasploit Pro through a programming Interface (RPC API)
• Pull penetration testing reports from Metasploit Pro in an XML format
MetaSploit Pro can be installed on Windows, Ubuntu, or Red Hat Enterprise Linux . Users can also provision a VMware image to data centers with VMware vSphere, or host an Amazon Machine Image (AMI) in Amazon Elastic Compute Cloud (Amazon EC2). Metasploit Pro 4.0 will be available in August 2011, likely making a launch at the Black Hat conference taking place in Las Vegas next week.