
Dec 15, 2010
MSFU Updates – December 2010
This month we have again been steadily updating the Metasploit Module Reference section of Metasploit Unleashed and also added some great new content covering the setup and usage of databases with Metasploit under BackTrack4 R2. This month also saw the introduction of the excellent GUI front-end, Armitage.
This month we have again been steadily updating the Metasploit Module Reference section of Metasploit Unleashed and also added some great new content covering the setup and usage of databases with Metasploit under BackTrack4 R2. This month also saw the introduction of the excellent GUI front-end, Armitage.
General Additions and Updates:
- Added Configuring Databases Section
- Added Using the MSF Database Section
- Rewrote the Pivoting Section
- Updated the Packet Sniffing Section with packetrecorder Coverage
- Updated the WMAP Web Scanner Section
- Updated the VBScript Infection Methods Section
- Updated the Meterpreter Screen Capture Section
Additions to the Module Reference Section:
- ftp/anonymous
- ftp/ftp_login
- ftp/ftp_version
- http/cert
- http/dir_listing
- http/dir_scanner
As always, we ask that if you find this content useful, please consider making a donation to Hackers for Charity to show your appreciation
Stay in the know: Become an OffSec Insider
Get the latest updates about resources, events & promotions from OffSec!
Latest from OffSec

Research & Tutorials
CVE-2024-21683 – Authenticated RCE via “Add a New Language” in Atlassian Confluence
Critical RCE vulnerability (CVE-2024-21683) in Atlassian Confluence Data Center and Server (v5.2–8.9.0) allows authenticated users to execute arbitrary code via malicious code macros.
Jun 12, 2025
2 min read

Research & Tutorials
CVE‑2025‑49113 – Post‑Auth Remote Code Execution in Roundcube via PHP Object Deserialization
A critical RCE vulnerability (CVSS 9.9) in Roundcube Webmail (
Jun 12, 2025
3 min read

Research & Tutorials
CVE-2025-24893 – Unauthenticated Remote Code Execution in XWiki via SolrSearch Macro
An RCE vulnerability in XWiki was found allowing unauthenticated attackers to execute arbitrary Groovy code remotely without authentication or prior access.
Jun 5, 2025
2 min read