Web Application Exploit Development
From Metasploit Unleashed
This section is going to go over the development of a web application exploit in the metasploit framework. The web application that we will be using is called dotDefender. The code we are going to use for the base of our exploit can be found on Exploit-DB: http://www.exploit-db.com/exploits/14310/
Web App Exploit Dev
Donate | Introduction | Required Materials | Metasploit Fundamentals | Information Gathering | Vulnerability Scanning | Writing A Simple Fuzzer | Exploit Development | Web App Exploit Dev | Client Side Attacks | MSF Post Exploitation | Meterpreter Scripting | Maintaining Access | MSF Extended Usage | Metasploit GUIs | Module Reference | About The Authors
Installing dotDefender | Analyzing the Exploit | Skeleton Creation | Making A Log Entry | Hosting the Javascript | Final Exploit
