During a penetration test, we are often tasked with showing the risk a flaw, such as SQL injection, really poses. Instead of building a custom script based on the target, Laudanum offers a series of pre-built files that include several different packaged post-exploits. For example, one file may create a web shell or another may provide file exploration capabilities. These files are also built to multiple technologies so they work on servers running Java as easily as ones running PHP.
The biggest addition to this release is the addition of files targeting WordPress installations. These were created by our own Jason Gillam!
You can download the latest release via http://laudanum.professionallyevil.com/
Kevin Johnson is the CEO of Secure Ideas. If you are in need of a penetration test or other security consulting services you can contact him at firstname.lastname@example.org or visit the Secure Ideas – Professionally Evil site for services provided.