A New Way of Penetration Testing
I just stumbled across a seriously awesome project/presentation from Defcon 19. It’s called Kinectasploit and it’s an implementation of the Metasploit Penetration Testing Framework. Here’s the awesome part, it’s controlled by a Microsoft Kinect! With a 3D GUI! Presented as a First-Person Shooter! This is really pretty amazing stuff. The Kinect side of things is handled by the OpenNITE drivers, the scripting is done in Python and from there Metasploit command strings are mapped to specific actions within the 3D environment.
I have been waiting to see something like this ever since I watched Robert Longo ruin Johnny Mnemonic by William Gibson. But that scene in the movie where Johnny was surfing around ‘cyberspace’ using gestures and wearing a visor always stuck with me. I’ve been following the Kinect hacking community since the launch of the product and have seen some seriously impressive and interesting uses for the device. I’ve also been using Metasploit for quite some time and this is by far the most creative interface I have ever seen for it. This might not be more efficient than issuing commands via command-line yet, but it’s a really excellent proof of concept. And being able to visualize information in real-time is a really valuable thing. I can’t wait to see more from this project. Check out the p0wnlabs website at this link for details on how to set this up for yourself!