Hack Metasploitable with UnrealIRC backdoor

Metasploitable is an OS with baked in vulnerabilities for you to practice exploits using Metasploit. In this tutorial we will be taking a look at ow to gain a reverse shell on our target machine by exploiting the UnrealIRC backdoor. What is IRC? IRC means Internet Relay Chat, it is a messaging service that wasContinue reading “Hack Metasploitable with UnrealIRC backdoor”

Cracking SSH Password on Metasploitable

Metasploitable as we explored in previous blog posts is made to be exploited. Ideal for those learning penetration testing and wanting to become familiar with the procedures, and techniques. In this article we will look at how we can exploit a vulnerability in SSH that allows us to obtain the root user password. The firstContinue reading “Cracking SSH Password on Metasploitable”

Metasploitable FTP Attack

Continuing from our previous tutorial on how to target a Metasploitable machine with postgresql, we will try a different attack using FTP. In our Kali Linux machine we have already run nmap and identified our target machine. It has FTP port 21 open. Metasploitable is running vsftp. If a username is sent that ends inContinue reading “Metasploitable FTP Attack”

Exploiting postgresql with Metasploit

So let’s assume you have your metapsloitable target machine setup and we are in Kali Linux. we know our network range is 10.0.2.xx so first thing to do is run nmap to discover what is on our network and what ports are open. we will see all the machines on our virtual box network, andContinue reading “Exploiting postgresql with Metasploit”