Pentesting Exploitation Project on a Vulnerable Machine

🌱 How to Get Started with This Project

Do not clone this repository! Just follow the instructions.

This exercise aims to teach students how to exploit vulnerabilities found in a vulnerable machine (Metasploitable) during the reconnaissance phase. This includes detecting exploitable vulnerabilities and privilege escalation. Note: No post-exploitation activities will be performed.

This is the second of 4 projects that will lead you to a thorough understanding of the world of pentesting. The objective is to carry out all phases of pentesting on a vulnerable computer, specifically using Metasploitable. This second phase focuses on "Exploitation" on a Vulnerable Machine.

Requirements

• Complete the Pentesting reconnaissance report Pentesting report v1.
• Access to the Metasploitable machine.
• Access to an attacking machine (e.g., Kali Linux).

Required Tools

• Nmap (for confirming vulnerabilities)
• Metasploit Framework
• Access to vulnerability databases (such as Exploit-DB)
• Additional tools depending on vulnerabilities (e.g., Hydra for brute force, netcat)

📝 Instructions

Step 1: Confirm Vulnerabilities

• Start the Metasploitable machine.
• Log in to Metasploitable with the default credentials (username: msfadmin, password: msfadmin).
• Obtain the IP address of Metasploitable using ifconfig. Example:

  1ifconfig

• On your attacking machine (e.g., Kali Linux), open a terminal and run the following command to confirm vulnerabilities, replacing <IP-Target> with the IP of the Metasploitable machine:

  1sudo nmap -sV --script=vuln <IP-Target>

Step 2: Detect Exploitable Vulnerabilities

• Research the confirmed vulnerabilities using databases like Exploit-DB or CVE Details.
• Identify available exploits for the detected vulnerabilities.

Step 3: Exploit Vulnerabilities

• Use Metasploit to exploit the identified vulnerabilities. Example: Exploiting a vulnerability in the FTP service.

  1msfconsole
  2use exploit/unix/ftp/vsftpd_234_backdoor
  3set RHOST <IP-Target>
  4run

Step 4: Privilege Escalation

• Identify privilege escalation techniques on the target machine.
• Use local exploits or manual techniques to escalate privileges. Example: Privilege escalation using a local exploit.

  1use exploit/linux/local/setuid_nmap
  2set SESSION <session_id>
  3run

Step 5: Document the Exploitation Process

• Detail each step taken during the exploitation.
  • Include commands used, screenshots, and results obtained.
• Write a Pentesting v2 report with exploited vulnerabilities, methods used, and results.
• Reflect on the impact of the exploited vulnerabilities.
• Propose mitigation measures for the found and exploited vulnerabilities.

Pentesting Report v2 Format

• Introduction

  • Summary of the objective and scope of the exercise.

• Methodology

  • Tools and techniques used.

• Results

  • Details of the exploited vulnerabilities.
  • Commands and tools used for exploitation.
  • Screenshots and evidence.

• Privilege Escalation

  • Techniques used and results obtained.

• Mitigation

  • Proposals to remediate the exploited vulnerabilities.

• Conclusion

  • Impact of the vulnerabilities and reflection on the process.

Contributors

Thanks goes to these wonderful people (emoji key):

1. Rosinni Rodríguez (rosinni) contribution: (build-tutorial) ✅, (documentation) 📖

2. Alejandro Sanchez (alesanchezr), contribution: (bug reports) 🐛

This project follows the all-contributors specification. Contributions of any kind are welcome!