<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2900.3314" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>-----BEGIN PGP SIGNED MESSAGE-----<BR>Hash:
SHA1</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2>These sorts of emails, while perhaps very accurate,
only encourage a<BR>barrage of emails concerning our apparent involvement in a
large<BR>governmental conspiracy and/or our "script kiddiness." I think
ignoring<BR>such emails from netdev are in order, tempting as they are to
respond to.</FONT></DIV>
<DIV> </DIV><FONT face=Arial size=2>
<DIV><BR>- ----- Original Message ----- <BR>From: Nate McFeters <BR>To: <A
href="mailto:Valdis.Kletnieks@vt.edu">Valdis.Kletnieks@vt.edu</A> <BR>Cc: n3td3v
; <A
href="mailto:full-disclosure@lists.grok.org.uk">full-disclosure@lists.grok.org.uk</A>
<BR>Sent: Monday, May 05, 2008 1:24 PM<BR>Subject: Re: [Full-disclosure] HD
Moore</DIV>
<DIV> </DIV>
<DIV><BR>More importantly than any of this is how great it is for
vulnerability<BR>research. Makes it much easier to encode shell code,
etc. Plus the<BR>msfpescan features are bad assery. Of course,
n3td3v has no ideas what<BR>these features are for so he thinks it's a script
kiddy tool.</DIV>
<DIV> </DIV>
<DIV>Andrew, you're so predictably boring... is there not something you
have<BR>expertise on that you can talk about?</DIV>
<DIV> </DIV>
<DIV>Obviously you're not in the right place on this list.</DIV>
<DIV> </DIV>
<DIV>Nate</DIV>
<DIV> </DIV>
<DIV> <BR>On 5/5/08, <A
href="mailto:Valdis.Kletnieks@vt.edu">Valdis.Kletnieks@vt.edu</A> <<A
href="mailto:Valdis.Kletnieks@vt.edu">Valdis.Kletnieks@vt.edu</A>> wrote:
<BR>On Sun, 04 May 2008 16:27:49 BST, n3td3v said:<BR>> On Fri, May 2, 2008
at 9:32 AM, Nate McFeters <<A
href="mailto:nate.mcfeters@gmail.com">nate.mcfeters@gmail.com</A>><BR>>
wrote: <BR>> > Oh that... Yeah, shame on hd... Maybe he was busy updating
metasploit<BR>> > so that real researchers have a great vulnerability
development<BR>> > framework, or something else that provided some worth
to people.<BR>><BR>> Maybe he was busy updating Metasploit so that script
kids have a great<BR>> vulnerability development framework.<BR>><BR>>
He should stop providing them with a great vulnerability development<BR>>
framework. </DIV>
<DIV> </DIV>
<DIV>There's 2 really great uses for metasploit for white hat security
guys:</DIV>
<DIV> </DIV>
<DIV>1) When you're handed a /16 or two during a pen test, and need a quick
way<BR>to poke a whole bunch of machines for a vulnerability, it's hard
to<BR>roll-your-own<BR>exploit tester as fast as you can chinese-menu one in
metasploit.</DIV>
<DIV> </DIV>
<DIV>2) It's a *great* tool for impressing on a PHB just how easy it is
to<BR>launch<BR>an exploit for something at one of the unsecured systems he's
responsible<BR>for.</DIV>
<DIV> </DIV>
<DIV><BR>_______________________________________________<BR>Full-Disclosure - We
believe in it.<BR>Charter: <A
href="http://lists.grok.org.uk/full-disclosure-charter.html">http://lists.grok.org.uk/full-disclosure-charter.html</A><BR>Hosted
and sponsored by Secunia - <A
href="http://secunia.com/">http://secunia.com/</A></DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV><BR>-
---------------------------------------------------------------------------<BR>-
-----</DIV>
<DIV> </DIV>
<DIV><BR>_______________________________________________<BR>Full-Disclosure - We
believe in it.<BR>Charter: <A
href="http://lists.grok.org.uk/full-disclosure-charter.html">http://lists.grok.org.uk/full-disclosure-charter.html</A><BR>Hosted
and sponsored by Secunia - <A
href="http://secunia.com/">http://secunia.com/</A></DIV>
<DIV> </DIV>
<DIV>-----BEGIN PGP SIGNATURE-----<BR>Version: PGP Desktop 9.6.2 (Build 2014) -
not licensed for commercial use: <A
href="http://www.pgp.com">www.pgp.com</A></DIV>
<DIV> </DIV>
<DIV>wj8DBQFIH0YySGIRT5oVahwRAnosAJ4hHPGYV1fW2rVb6BdAv8YTXqfvzgCcCLWE<BR>46UCD/zeo++7hxpDyT2icsM=<BR>=klVh<BR>-----END
PGP SIGNATURE-----<BR></FONT></DIV></BODY></HTML>