MSF is worlds one of the most used penetration testing framework. Metasploit helps security teams do more
Question:
MSF is world’s one of the most used penetration testing framework. Metasploit helps security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness; it empowers and arms defenders to always stay one step (or two) ahead of the game.
Goals of this assignment is to enhance your learning toward practical implication.
a) Gain a remote access to another machine using Metasploit by exploiting one of the open ports
b) Copy a file from the target remote machine to the machine where MSF is installed. Environments: a) Virtual Box (VBox) b) Kali Linux installed in VBox c) MSF installed in Kali Linux d) Metasploitable installed in VBox
1. Environment Setup:
a). Kali Linux and Metasploitable Linux Machine should be installed in VBox
b). Demonstrate the connectivity between Kali Linux and Metasploitable Linux Machine (Hint: screenshot of pinging result)
2. Creating the target file:
a). Encrypt the following information using asymmetric cryptography and store the cyphertext in a file namely personalData.txt
a.i). Your Name + Student ID
b). Hide the private key inside an image using the necessary steganography tool. Name the image as secret.jpg c). Save personalData.txt and secret.jpg in the home directory of ‘Kali Linux’
3. Remote session setup:
a). Using the MSF framework from Kali Linux find all the open ports of Metasploitable.
b). Use one of the open ports to create a session from Kali Linux to Metasploitable
c). Copy personalData.txt and secret.jpg to Metasploitable
Auditing Cases An Interactive Learning Approach
ISBN: 9780134421827
7th Edition
Authors: Mark S Beasley, Frank A. Buckless, Steven M. Glover, Douglas F Prawitt