2020 was certainly an interesting year. There were quite a few newsworthy events and some fantastic exploit content released. Let’s take a look at what 2020 meant for Metasploit.
Quick stats
Some quick statistics for Metasploit’s year.
737 pull requests merged (and counting)
A net gain of +179 non-payload modules
50 new Auxiliary modules
134 new Exploit modules
23 new Post modules
2 CTFs hosted
1 new version
The Metasploit team released version 6.0 of the framework over the summer. This major change brought quite a few improvements on two fronts: the Meterpreter transport protocol and SMBv3 support for client connections. Both of these offered transport encryption for common operations performed by Metasploit, providing better security for the users. Additionally, to showcase the SMBv3 support, Metasploit added a new module to perform agentless dumping of SAM hashes and LSA secrets (including cached creds) from remote Windows targets. The technique employed by this module has become very popular due to its reliability, and the native integration into the Metasploit Framework makes it easily accessible for users with all the related benefits like database and pivoting support.
CTFs
There were not one but two open CTFs hosted by the Metasploit team in 2020. These events invited the community to solve challenges in a fun and competitive environment. The most recent event included 1,903 users registered across 874 teams.
New module highlights
exploit/windows/local/anyconnect_lpe (CVE-2020-3153 & CVE-2020-3433) - This exploit module was an excellent example of a trend of patch bypasses this year. The module is capa ..
Support the originator by clicking the read the rest link below.
