View analytic
Friday, May 20 • 10:00am - 11:00am
Scripting Myself Out of a Job - Automating the Penetration Test with APT2

Sign up or log in to save this to your schedule and see who's attending!

The review board likes submissions that include references to prior works and research you used in developing your presentation.
Every penetration test begins the same way. Run a NMAP scan, review the results, choose services to enumerate and attack, and perform post-exploitation pillaging. What was once a manual process is now automated!
Nearly every penetration test begins the same way; run a NMAP scan, review the results, choose interesting services to enumerate and attack, and perform post-exploitation activities. What was once a fairly time consuming manual process, is now automated!
Automated Penetration Testing Toolkit (APT2) is an extendable modular framework designed to automate common tasks performed during penetration testing. APT2 can chain data gathered from different modules together to build dynamic attack paths. Starting with a NMAP scan of the target environment, discovered ports and services become triggers for the various modules which in turn can fire additional triggers. Have FTP, Telnet, or SSH? APT2 will attempt common authentication. Have SMB? APT2 determines what OS and looks for shares and other information. Modules include everything from enumeration, scanning, brute forcing, and even integration with Metasploit. Come check out how APT2 will save you time on every engagement.

avatar for Adam Compton

Adam Compton

Senior Security COnsultant, Rapid7
Adam Compton has been a programmer, researcher, instructor, professional pentester, father, husband, and farmer. Adam has close to 2 decades of programming, network security, incident response, security assessment, and penetration testing experience. Throughout Adam's career, he has... Read More →

Friday May 20, 2016 10:00am - 11:00am
Scruffy City Hall 32 Market Square, Knoxville, TN 37902

Attendees (28)