Cybersecurity training without home or office distractions: 11 courses | San Francisco | Dec 2-7

Northern Virginia - Reston 2017

Reston, VA | Sun, May 21 - Fri, May 26, 2017
This event is over,
but there are more training opportunities.

Shell Is Only The Beginning: Understanding Metasploit Post Exploitation Modules

  • Kevin Fiscus
  • Wednesday, May 24th, 7:15pm - 8:15pm

Metasploit is a fantastic hacking tool. Having a huge range or exploits and a collection of different payloads that are easy to use makes compromising vulnerable system almost trivial. Many a penetration tester have been given the opportunity to do their "happy dance" by compromising a system and getting shell on the target system. Getting shell however, is only the beginning of the penetration test. When taking martial arts it is common to hear that becoming a blackbelt is only the beginning of the training. Penetration testing is similar. The test really begins when you get shell. Once you have access to the compromised system, what do you do? This talk will discuss the often overlooked post exploitation modules in Metasploit. These are the components in Metasploit that allow you to capture keystrokes, identify new targets, grab credentials, identify users, determine what applications are installed and even identify if you have compromised a physical or virtual host. During this talk we will describe and demonstrate many of these modules adding to your arsenal of penetration testing techniques.


Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
  • Lunch & Learn: Short presentations given during the lunch break.
Sunday, May 21
Session Speaker Time Type
General Session - Welcome to SANS Paul A. Henry Sunday, May 21st, 8:00am - 8:30am Special Events
What's New for Security in Windows 10 and Server 2016? Jason Fossen Sunday, May 21st, 7:15pm - 9:15pm Keynote
Monday, May 22
Session Speaker Time Type
Virtualizing Forensic Images Using Free Tools in Linux Carlos Cajigas Monday, May 22nd, 7:15pm - 8:15pm SANS@Night
Tuesday, May 23
Session Speaker Time Type
Utilizing the Normality of Network Traffic as a Security Sensor Jay Veteto , Security Account Manager - Network Visibility & Enforcement Tuesday, May 23rd, 12:30pm - 1:15pm Lunch and Learn
Collecting and Exploiting Your "Private" Internet Data Micah Hoffman Tuesday, May 23rd, 7:15pm - 8:15pm SANS@Night
Wednesday, May 24
Session Speaker Time Type
Shell Is Only The Beginning: Understanding Metasploit Post Exploitation Modules Kevin Fiscus Wednesday, May 24th, 7:15pm - 8:15pm SANS@Night
Thursday, May 25
Session Speaker Time Type
Advancing the Security Agenda- Compelling Leadership to Support Security Doc Blackburn Thursday, May 25th, 7:15pm - 8:15pm SANS@Night