As part of the State of the Framework Address at last year’s DerbyCon, I discussed Post modules, the newest module type available in the Metasploit Framework. This time around, I’ll be focusing on a fusion of Post modules and Exploit modules: Msf::Exploit::Local, for when you absolutely, positively, have to have root (and don’t mind an occasional kernel panic). This talk will cover some fun local exploits, from antiquity to modern times, including how to use and create them for the Metasploit Framework.