Armitage: Fast and Easy Metasploit Hacking

I had the good fortune to attend ShmooCon 2011 last weekend. A new tradition at ShmooCon is evening “firetalks” on Friday and Saturday. Basically, after the conference has ended for the day, a bunch of folks decide to put off parties for a few more hours in order to do a bunch of 15-minute “get right to the point” talks. This year had a good selection of topics and speakers, with one that jumped out to me as a perfect topic for this week’s “Technology & Tool Thursday” post.

Armitage was written by Raphael Mudge (not to be confused with Peiter “Mudge” Zatko). It’s a GUI interface for using Metasploit to pwn your targets. Metasploit is a tremendous framework for writing and launching attacks, but it can get a bit daunting, plus it may not always lead to the most efficient attack patterns. Instead, Armitage helps make everything easy by taking away a lot of the command-line ninja voodoo necessary to make things tight and effective. You can now download it as part of the Metasploit tree, or you can set it up independently. There are plenty of details in the online manual.

The best recommendation I can give for learning more is to go watch the firetalk. You can do that over —> here. Raphael walks through several demos as he counts down the 10 reasons Armitage makes Metasploit hacking fast and easy.