2010 November | Things and Stuff

New feature added.

Talking in the #metasploit channel on freenode.net today someone (you know who you are) gave me the idea of saving the username, password, hostname/ip and port to a nessus.yaml file so they would be saved between metasploit sessions.

So tonight, I added that. New commands added are:

nessus_save: this will save those 4 items to ~/.msf3/nessus.yaml
nessus_logout will now remove that file when invoked.
nessus_connect will look for that file and use it’s contents if invoked with no arguments. If the file doesn’t exist, it will display usage.

So basically, load nessus, nessus_connect admin:admin@myserver:8834 and then nessus_save. Now each time you load nessus you just need to nessus_connect and it will reuse those saved creds, until you wiped them out with nessus_logout.

Up next is investigating a way to have the nessus.yaml house multiple sets of creds and let you invoke nessus_connect with the set name to login to that server (or the default set if no set name is given). also need to modify nessus_save to take an argument that it will use for the set name. Tackle that later this week I guess.

It’s been merged, so svn up and you are set. Report bugs to me or via the metasploit redmine.

thanks!

Written on November 12th, 2010 , Bananas Tags: Auto, Draft, idea, logout, Metasploit, nessus, new feature, password, report bugs, today, yaml

So much to do.

Going to write up a bit of a “todo” list here of all the things I need to work on.

Nessus IVIL wrapper for Seccubus V2 – I had a wonderful talk with Frank from seccubus a couple of weeks back and we came up with the idea of “IVIL” which is basically a common XML format to report findings in from just about any tool. I’m going to write an example IVIL aware wrapper for Nessus that will let you create scans, download reports and output in IVIL format to be loaded into seccubus V2. Ideally anyone could write a wrapper for any tool and convert the tools output to IVIL to be loaded into seccubus for reporting.
Bug fixes for the Nessus plugin. I need to diff out all the new things in the code that are not currently in metasploit and submit that. Also work on a couple of tweaks and new features people have suggested.
Watch some more ruby videos and read some more of my ruby book.
Fix up my dev environment. I am trying to swap over to using Netbeans as my IDE and SVN over SSH to connect to remote servers to test. Carlos Perez has been great in showing me how this works. Probably look at moving my dev to a vm on my laptop to repurpose the current hardware as an Astaro box.
Look into using meterpreter more and learning about meterpreter scripting in order to use meterpreter as an OVAL interpreter.
Work more on learning nasl. Also looking to create a nasl script to do OVAL scanning of remote hosts directly with nessus. Lots to do here and nasl is a bit clunky after working with ruby. Funtimes though.
Keep working on my highly threaded http scanning engine. Basically want something that is fast and scalable for finding http(s) servers on any port. If one exists now that grabs all kinds of info on what the server/service is, love to see it. Emphasis on the fast and scalable, talking scanning thousands of hosts and all ports.

That’s all that springs to mind right now. Still getting over being sick and the whole family being sick after returning from Hack3rcon.

Speaking of Hack3rcon, I had a blast. I’ll sign off here by embedding my talk on Nessus/MSF Integration. My first ever talk and I learnt a great deal about presenting with live demo’s. Redt of the talks are available on irongeek.com

Nessus Bridge for Metasploit Zate Berg from Adrian Crenshaw on Vimeo.

Written on November 2nd, 2010 , Bananas, Security, Stuff, Technology, Things Tags: Auto, carlos perez, Dev, dev environment, Draft, Metasploit, meterpreter, netbeans, ruby, tool, work, xml format

Pages

Archives

Categories

A Blog about things and stuff.