{"id":56,"date":"2020-09-26T18:30:35","date_gmt":"2020-09-26T18:30:35","guid":{"rendered":"https:\/\/charlesmarrow.uk\/?page_id=56"},"modified":"2020-09-27T14:14:34","modified_gmt":"2020-09-27T14:14:34","slug":"metasploitable-2","status":"publish","type":"page","link":"https:\/\/charlesmarrow.uk\/index.php\/pen-tests\/metasploitable-2\/","title":{"rendered":"Pen-Test Walkthrough &#8211; Metasploitable 2"},"content":{"rendered":"\n<p>Metasploitable 2 is a purpose build vulnerable VM and web app designed for testing. <\/p>\n\n\n\n<figure class=\"wp-block-embed-youtube wp-block-embed is-type-video is-provider-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"Metasploitable Test#1 thru #6\" width=\"605\" height=\"340\" src=\"https:\/\/www.youtube.com\/embed\/ypKbmmaLWn0?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe>\n<\/div><\/figure>\n\n\n\n<figure class=\"wp-block-table\"><table><tbody><tr><td><strong>Test#<\/strong><\/td><td><strong>Brief Test Vector Detail<\/strong><\/td><td><strong>Vulnerability<\/strong><\/td><\/tr><tr><td>1<\/td><td>ARP requests revealing MAC address<\/td><td>Attacker takes advantage of open traffic and can redirect it with incorrect mappings to the gateway or the network host<\/td><\/tr><tr><td>2<\/td><td>Banner Grabbing<\/td><td>Operating System information is discoverable<\/td><\/tr><tr><td><\/td><td>Port Service Scan<\/td><td>Open port information is retrieved and can be researched against known Exploit-Databases to prepare attacks<\/td><\/tr><tr><td>3<\/td><td>Remote access login via Remote Shell (RSH)<\/td><td>Host compromise through a remote shell enables an attacker to take control<\/td><\/tr><tr><td>4<\/td><td>Network File System (NFS) Service exploited by creating a folder on the Hosts root directory and installing a pre-generated authorised key.<\/td><td>Command line access can be gained, remote control of the Host machine is established<\/td><\/tr><tr><td>5<\/td><td>Telnet Backdoor connection<\/td><td>Creating a backdoor on the Host effectively enables a Hacker to keep a continuous or intermittent connection on the Host machine<\/td><\/tr><tr><td>6<\/td><td>Samba Backdoor connection<\/td><td>Creating a backdoor on the Host effectively enables a Hacker to keep a continuous or intermittent connection on the Host machine<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<figure class=\"wp-block-embed-youtube wp-block-embed is-type-video is-provider-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"Metasploitable  Test#7 - Secure Copy Protocol\" width=\"605\" height=\"340\" src=\"https:\/\/www.youtube.com\/embed\/r-FAWhVwPZU?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe>\n<\/div><\/figure>\n\n\n\n<p><strong><\/strong><\/p>\n\n\n\n<figure class=\"wp-block-table\"><table><tbody><tr><td><strong>Test#<\/strong><\/td><td><strong>Brief Test Vector Detail<\/strong><\/td><td><strong>Vulnerability<\/strong><\/td><\/tr><tr><td>7<\/td><td>Secure Copy protocol enabled via port 22<\/td><td>Allows a high level privilege user to connect via the port. Complete exploitation of the machine is possible<\/td><\/tr><\/tbody><\/table><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>Metasploitable 2 is a purpose build vulnerable VM and web app designed for testing. Test# Brief Test Vector Detail Vulnerability 1 ARP requests revealing MAC address Attacker takes advantage of open traffic and can redirect it with incorrect mappings to &hellip;<\/p>\n<p class=\"read-more\"> <a class=\"more-link\" href=\"https:\/\/charlesmarrow.uk\/index.php\/pen-tests\/metasploitable-2\/\"> <span class=\"screen-reader-text\">Pen-Test Walkthrough &#8211; Metasploitable 2<\/span> Read More &raquo;<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"parent":123,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-56","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/charlesmarrow.uk\/index.php\/wp-json\/wp\/v2\/pages\/56","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/charlesmarrow.uk\/index.php\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/charlesmarrow.uk\/index.php\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/charlesmarrow.uk\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/charlesmarrow.uk\/index.php\/wp-json\/wp\/v2\/comments?post=56"}],"version-history":[{"count":8,"href":"https:\/\/charlesmarrow.uk\/index.php\/wp-json\/wp\/v2\/pages\/56\/revisions"}],"predecessor-version":[{"id":72,"href":"https:\/\/charlesmarrow.uk\/index.php\/wp-json\/wp\/v2\/pages\/56\/revisions\/72"}],"up":[{"embeddable":true,"href":"https:\/\/charlesmarrow.uk\/index.php\/wp-json\/wp\/v2\/pages\/123"}],"wp:attachment":[{"href":"https:\/\/charlesmarrow.uk\/index.php\/wp-json\/wp\/v2\/media?parent=56"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}