I caught this story yesterday on The Register. Ars has it now.
I downloaded AutoSploit last night to play with it, but I haven’t actually had the chance to yet. I’m of the mindset that this makes the internet a scarier place in general. Historically Metasploit has been out of the mental reach of script kiddies. AutoSploit puts Metasploit squarely in the hands of script kiddies. Well, at least some of Metasploit’s features, anyways. Fortunately not all of them.
On the other hand, this also makes it easier for those of us who are not security experts. This could help us to audit our own internet presence without paying for a full penetration test.
Bonus humor: Bridging Metasploit and Shodan is like bringing the Key Master and Gate Keeper together. Soon we’ll be seeing Zuul in all of our internet connected refrigerators.