[Owasp-leaders] MPack

Christian Heinrich christian.heinrich at owasp.org
Thu Oct 22 04:07:17 EDT 2009


Eoin,

You may also want to check out BeFF and its integration with Metasploit i.e.
http://www.bindshell.net/entry/67

On Thu, Oct 22, 2009 at 7:16 AM, Dan Guido <dguido at gmail.com> wrote:

> Metasploit's browser_autopwn is very similar in the technical aspects
> of how most web exploit kits work. The actual exploit kits do more
> management and reporting related to compromised machines than
> Metasploit does, such as by categorizing victims and maintaining
> long-term persistence with malware like Zeus.
>
> What's your ultimate goal? Are you trying to build some kind of
> detection system? Create a work-a-like for pentest scenarios?
>
> --
> Dan Guido
>
>
>
> On Wed, Oct 21, 2009 at 12:05 PM, Eoin <eoin.keary at owasp.org> wrote:
> > Hi Dan,
> > No simply want to take a peek on how it is put together.
> > I am looking for something currently in the wild and which works.
> >
> >
> > 2009/10/21 Dan Guido <dguido at gmail.com>
> >>
> >> I haven't heard any new developments about MPack in a significant
> >> period of time. Is there anything specific you want to know about it
> >> or other web exploit kits? Maybe I can help.
> >>
> >> --
> >> Dan Guido
> >>
> >>
> >>
> >> On Wed, Oct 21, 2009 at 11:47 AM, Eoin <eoin.keary at owasp.org> wrote:
> >> > Does anyone have a copy of mpack they can share?
> >> > http://en.wikipedia.org/wiki/MPack_(software)<http://en.wikipedia.org/wiki/MPack_%28software%29>
> >> >
> >> > --
> >> > Eoin Keary
> >> >
> >> > OWASP Code Review Guide Lead Author
> >> > OWASP Ireland Chapter Lead
> >> > OWASP Global Committee Member (Industry)
> >> >
> >> > http://asg.ie/
> >> > https://twitter.com/EoinKeary
> >> >
> >> > _______________________________________________
> >> > OWASP-Leaders mailing list
> >> > OWASP-Leaders at lists.owasp.org
> >> > https://lists.owasp.org/mailman/listinfo/owasp-leaders
> >> >
> >> >
> >> _______________________________________________
> >> OWASP-Leaders mailing list
> >> OWASP-Leaders at lists.owasp.org
> >> https://lists.owasp.org/mailman/listinfo/owasp-leaders
> >
> >
> >
> > --
> > Eoin Keary
> >
> > OWASP Code Review Guide Lead Author
> > OWASP Ireland Chapter Lead
> > OWASP Global Committee Member (Industry)
> >
> > http://asg.ie/
> > https://twitter.com/EoinKeary
> >
> > _______________________________________________
> > OWASP-Leaders mailing list
> > OWASP-Leaders at lists.owasp.org
> > https://lists.owasp.org/mailman/listinfo/owasp-leaders
> >
> >
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>



-- 
Regards,
Christian Heinrich - http://sn.im/cmlh_linkedin_profile
OWASP "Google Hacking" Project Lead - http://sn.im/owasp_google_hacking
Speaking Schedule at http://sn.im/cmlh_speaking_schedule
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-leaders/attachments/20091022/f084e651/attachment-0001.html 


More information about the OWASP-Leaders mailing list