filmov
tv
Metasploit Demo Meeting 2021-05-04
Показать описание
The Rapid7 Metasploit development team discusses (and demonstrates!) ongoing Metasploit work and features during their bimonthly sprint meeting, including the following NEW modules:
* Nagios XI 5.6.0-5.7.3 RCE (CVE-2020-5791)
* Nagios XI 5.5.0-5.7.3 RCE (CVE-2020-5792)
* Cockpit CMS NoSQLi to RCE (CVE-2020-35846)
* Redis Extractor
* Apache Druid 0.20.0 RCE (CVE-2021-25646)
* VMware vRealize Operations (vROps) Manager SSRF RCE (CVE-2021-21983)
* Micro Focus Operations Bridge Reporter default password (ZDI-20-1215, CVE-2020-11857)
* KOFFEE - Kia OFFensivE Exploit (CVE-2020-8539)
Included in this recording, the team demonstrates the new Druid, vRealize, and Nagios modules (also includes a demo of the Gitea and Gogs RCE modules), as well as some nice fixes and enhancements. Plus an AttackerKB update!
* Nagios XI 5.6.0-5.7.3 RCE (CVE-2020-5791)
* Nagios XI 5.5.0-5.7.3 RCE (CVE-2020-5792)
* Cockpit CMS NoSQLi to RCE (CVE-2020-35846)
* Redis Extractor
* Apache Druid 0.20.0 RCE (CVE-2021-25646)
* VMware vRealize Operations (vROps) Manager SSRF RCE (CVE-2021-21983)
* Micro Focus Operations Bridge Reporter default password (ZDI-20-1215, CVE-2020-11857)
* KOFFEE - Kia OFFensivE Exploit (CVE-2020-8539)
Included in this recording, the team demonstrates the new Druid, vRealize, and Nagios modules (also includes a demo of the Gitea and Gogs RCE modules), as well as some nice fixes and enhancements. Plus an AttackerKB update!
0:28:16
0:18:31
0:22:56
0:15:37
0:34:37
0:24:02
0:27:28
0:29:27
0:01:31
0:00:16
0:04:09
2:48:33
0:07:02
1:25:24
0:47:38
0:43:42
1:03:14
0:01:01
0:47:50
1:06:32
1:04:16
0:54:44
0:56:02
0:36:20