savant's blog

Metasploit on Android

So, I've been kind of pissed that the iphone seeminly had more robust potential as a pentesting platform, compared to Android. In a, shall we say, moment of discomfort, I shitcanned AT&T for Sprint and got a Galaxy S phone. And of course, there's no native port of Metasploit yet.

If you're in my boat, fear not, there is a solution: Chroot'd ubuntu. Just follow the instructions at to get yourself a functional Ubuntu environment, then load it up with your tools of choice. Metasploit works quite well!

Metasploit... on an Apple IIe?!

Installing the Metasploit Framework on the iPad

The iPad is hailed by Apple to be a "Magical and revolutionary" device. Whether or not that is true is a fact in heavy debate. Personally, I don't think so. But it IS a very interesting platform for penetration testing.

Grab your Ipad's SHSH while you can

First off, what is an ECID and SHSH and why do you care? via "Well “ECID” stands for Exclusive Chip ID. This is a unique chip identification that is different for every iPhone 3GS and iPod Touch 3g. When you restore your device, iTunes contacts the Apple servers, to generate signatures (SHSH), just for your device. It is widely thought that this a new security feature, implemented to stop jailbreaking of future firmwares."

Subscribe to RSS - savant's blog