Exploiting a Shellshock target on OffSec Proving Grounds Play via ChatGPT crafted inject
MCLEAN, VA, USA, April 18, 2024 /EINPresswire.com/ — Kasm Technologies announced a training video demonstrating on-demand ethical phishing campaigns powered by GoPhish, an open-source phishing framework. These workspaces are detailed in a new video released in cooperation with the Tech Raj YouTube channel.
Kasm Technologies announced a training video demonstrating on-demand vulnerability scanning powered by Nessus. Utilizing Nessus, the industry’s most robust vulnerability scanner, alongside the innovative AI capabilities of ChatGPT, this training demonstrates detecting and exploiting the notorious Shellshock vulnerability on the Offsec Proving Grounds Play platform. This workspace is detailed in a new video released in cooperation with the Tech Raj YouTube channel.
The video is available at: https://www.youtube.com/watch?v=XBt_tsqHoN4
Detailed information is also available on Medium.
Nessus is well-regarded for its comprehensive scanning capabilities that assess entire network attack surfaces to pinpoint vulnerabilities. This tool supports an array of scans, including Host, Basic Network, Malware, and Active Directory scans, making it a valuable asset for thorough network enumeration and security breach prevention.
The latest demonstration involved a critical setup of Nessus on Kasm Workspaces, a cutting-edge platform that streams desktops, browsers, and applications directly to the user’s web browser. This setup allows Nessus to operate within a container that supports necessary configurations and privileges, thereby enhancing its scanning capabilities.
During this demonstration, Nessus was deployed to scan a designated target machine, aptly named “Sumo,” on the Proving Grounds Play network. The scan successfully identified several vulnerabilities, with a particular focus on the “GNU Bash Environment Variable Handling Code Injection (Shellshock)” vulnerability. Nessus not only discovered the vulnerability but also successfully exploited it, confirming the exploit’s effectiveness in a live environment.
Further leveraging the AI technology of ChatGPT, Tech Raj utilized the AI to generate a CURL command that replicated the malicious request identified by Nessus. The successful execution of this command by Nessus provided concrete evidence of the vulnerability’s presence and the potential for arbitrary command execution on the target system.
Kasm’s successful integration of Nessus into our container repo showcases our commitment to support the vulnerability research community. This demonstration emphasizes our ability to equip organizations with the tools necessary to identify and address vulnerabilities promptly, ensuring robust network security in increasingly complex digital landscapes.
For more information on our community edition see: https://www.kasmweb.com/community-edition
ABOUT KASM WORKSPACES
Kasm Workspaces is a container-based platform that offers a flexible and secure environment for remote work and collaboration. With Kasm Workspaces, users can effortlessly create, manage, and deploy containerized desktops and applications, ensuring a seamless and secure user experience. Kasm’s core technology revolves around containerized application streaming, which enables users to access a wide array of applications through any web browser, irrespective of their device or operating system. This approach not only enhances accessibility and user experience but also bolsters cybersecurity by isolating each application in a secure container environment.
ABOUT KASM TECHNOLOGIES
Founded by experts in cybersecurity and cloud computing, Kasm Technologies is dedicated to addressing the challenges of modern digital workspaces. Their products are designed to cater to a diverse clientele, ranging from small businesses to large enterprises, offering solutions that prioritize security, performance, and ease of use. Through its continuous innovation and customer-focused approach, Kasm Technologies is not just redefining the digital workspace but is also contributing significantly to the evolving landscape of cybersecurity and remote work solutions.
Matt McClaskey – CTO
Kasm Technologies
+1 571-444-5276
email us here
Article originally published on www.einpresswire.com as Nessus Vulnerability Scanning Available On-Demand in Kasm Workspaces