Rapid7 announced the launch of Metasploit® Pro 4.0
July 2011 by Marc Jacob
Rapid7 announced the launch of Metasploit® Pro 4.0: a penetration testing solution that enables defenders to respond to the changing threat landscape by identifying and understanding security holes in their enterprise infrastructure. This new version is designed to better meet enterprise needs by offering integrations with other elements of security risk intelligence ecosystems, a range of deployment models and a number of features for automated penetration testing. By reducing the cost and complexity of security testing, Metasploit Pro 4.0 enables enterprises to conduct broader and more frequent security audits to prevent data breaches.
Metasploit Pro 4.0 provides security professionals with a better view of their threat landscape by integrating with more than a dozen vulnerability management and Web application scanners, and by providing data to security information and event management (SIEM) systems through a documented interface. This enables defenders to identify vulnerabilities that could lead to a data breach and prioritize their remediation more effectively. Security teams increase their productivity by spending less time fixing unimportant vulnerabilities and have an effective way to verify that remediation was successful. Rapid7’s own vulnerability management solution, NeXpose® uniquely offers even greater integration with Metasploit Pro through documented, supported APIs that enable Metasploit Pro users to schedule new vulnerability scans and leverage data from decentralized locations running NeXpose scans.
The new version also offers support for both public and private cloud deployments. Defenders leveraging the public cloud can now easily conduct external penetration tests from Metasploit Pro in the Amazon Elastic Compute Cloud (Amazon EC2). Metasploit Pro is available as an Amazon Machine Image (AMI) making external penetration tests from the cloud quick, easy and inexpensive. Organizations using virtualization technologies such as VMware vSphere to underpin a private cloud deployment can now easily penetration test remote sites.
The new capabilities in Metasploit Pro 4.0 now enable defenders to:
Integrate security risk intelligence
· Integrate Metasploit Pro with your security information and event management (SIEM) system to improve your dashboard information
· Import scan results from more than a dozen third-party Web application scanners and vulnerability assessment tools to prioritize vulnerabilities and eliminate false positives
· Increase productivity in your security team by integrating Metasploit Pro with NeXpose vulnerability management solutions to directly access vulnerabilities that need to be verified
· Automate verification of vulnerabilities and reporting through new programming interface and XML results
· Easily document compliance with FISMA reports that map findings to controls and requirements
Deploy in a way that works for you
· Install on Windows, Ubuntu, or Red Hat Enterprise Linux
· Provision a VMware image to your data centers with VMware vSphere
· Host an Amazon Machine Image (AMI) in Amazon Elastic Compute Cloud (Amazon EC2)
Automate penetration testing steps
· Automatically gather evidence with customizable post-exploitation macros
· Re-establish dropped shells with persistent sessions and listeners
· Replay previously successful attacks to verify remediation
· Easily crack encrypted passwords offline
· Remotely control Metasploit Pro through a programming Interface (RPC API)
· Pull penetration testing reports from Metasploit Pro in an XML format
Metasploit Pro 4.0 is based on the Metasploit Framework, the most widely used and mature penetration testing solution in the market with more than one million unique downloads and the world’s largest, public collection of quality-assured exploits. The Metasploit Framework is continuously updated and version 4.0 marks the inclusion of 36 new exploits, 27 new post-exploitation modules and 12 auxiliary modules, all added since the release of version 3.7.1 in May 2011. These additions include nine new SCADA exploits, improved 64-bit Linux payloads, exploits for Firefox and Internet Explorer, full-HTTPS and HTTP Meterpreter stagers, and post-exploitation modules for dumping passwords from Outlook, WSFTP, CoreFTP, SmartFTP, TotalCommander, BitCoin and many other applications. For more information on the ongoing development of the Metasploit Framework, please visit the Metasploit blog.
In addition to Metasploit Pro, Rapid7 also offers Metasploit Express as an entry-level option for vulnerability verification and penetration testing. With a reduced feature set from Metasploit Pro, Metasploit Express is optimized for security professionals who need an accessible and affordable penetration testing solution to verify the findings of their vulnerability scanners without extensive training.
– Availability
Metasploit Pro 4.0 is available from August 2011.