Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Network Security

Metasploit Pro 4.0 Plays Well With Others: Integrates with SIEM, Other Systems

Penetration Testing Platform Introduces Interface for SIEM Integration, Public and Private Cloud Deployments, Brings New SCADA Exploits and More

Rapid7, a Boston-based provider of vulnerability management and penetration testing solutions, today announced the launch of Metasploit Pro 4.0, the latest edition of its penetration testing solution.

Penetration Testing Platform Introduces Interface for SIEM Integration, Public and Private Cloud Deployments, Brings New SCADA Exploits and More

Rapid7, a Boston-based provider of vulnerability management and penetration testing solutions, today announced the launch of Metasploit Pro 4.0, the latest edition of its penetration testing solution.

Metasploit Pro 4.0 AnnouncedMetasploit Pro 4.0 now integrates with more than a dozen vulnerability management systems and Web application scanners, and can send data to directly to SIEM systems.

Metasploit 4.0 brings the inclusion of 36 new exploits, 27 new post-exploitation modules and 12 auxiliary modules, including nine new SCADA exploits, improved 64-bit Linux payloads, exploits for Firefox and Internet Explorer, full-HTTPS and HTTP Meterpreter stagers, and post-exploitation modules for dumping passwords from Outlook, WSFTP, CoreFTP, SmartFTP, TotalCommander, BitCoin and many other applications.

Metasploit Pro 4.0 enables enterprises to conduct broader and more frequent security audits to prevent data breaches and enables security teams to increase their productivity by spending less time fixing less-important vulnerabilities and have an effective way to verify that remediation was successful.

“Organizations looking to reduce data breach risks need smarter and more efficient security risk intelligence. One way to get this is through frequent, broad-scale penetration testing,” said HD Moore, Rapid7’s chief security officer and Metasploit chief architect. “The new features of Metasploit Pro 4.0 make this a practical reality for defenders by automating penetration testing workflow steps, better integrating with vulnerability management solutions and introducing new interfaces for SIEM systems.”

The new capabilities in Metasploit Pro 4.0 now enable users to:

Integrate security risk intelligence

Advertisement. Scroll to continue reading.

• Integrate Metasploit Pro with security information and event management (SIEM) systems to improve your dashboard information

• Import scan results from more than a dozen third-party Web application scanners and vulnerability assessment tools to prioritize vulnerabilities and eliminate false positives

• Increase security team productivity by integrating Metasploit Pro with NeXpose vulnerability management solutions to directly access vulnerabilities that need to be verified

• Automate verification of vulnerabilities and reporting through new programming interface and XML results

• Document compliance with FISMA reports that map findings to controls and requirements

Automate penetration testing steps

• Automatically gather evidence with customizable post-exploitation macros

• Re-establish dropped shells with persistent sessions and listeners

• Replay previously successful attacks to verify remediation

• Easily crack encrypted passwords offline

• Remotely control Metasploit Pro through a programming Interface (RPC API)

• Pull penetration testing reports from Metasploit Pro in an XML format

MetaSploit Pro can be installed on Windows, Ubuntu, or Red Hat Enterprise Linux . Users can also provision a VMware image to data centers with VMware vSphere, or host an Amazon Machine Image (AMI) in Amazon Elastic Compute Cloud (Amazon EC2). Metasploit Pro 4.0 will be available in August 2011, likely making a launch at the Black Hat conference taking place in Las Vegas next week.

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Network Security

NSA publishes guidance to help system administrators identify and mitigate cyber risks associated with transitioning to IPv6.

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Network Security

Our networks have become atomized which, for starters, means they’re highly dispersed. Not just in terms of the infrastructure – legacy, on-premises, hybrid, multi-cloud,...