Lab 3: Introduction to Metasploit | Bill , NaghmehLab 3: Introduction to Metasploit Aim: The airm of this lab is to develop and execute exploits against a remote machine and test its vulnerabilities using Metasploit. Quick tool introduction: Metasploit framework is an open source penetration tool used for developing and executing exploit code against a remote target machine. The framework has the world’s largest database of public and tested exploits. In simple words, Metasploit can be used to test the vulnerability of computer systems in order to protect them and on the other hand it can also be used to break into remote systems. It’s a powerful tool used for penetration testing. A demo of this lab is here:Network Allocation: A Activities: • Complete Lab 3:vulnerability analysis and penetration testing using Metasploit. Learning activities: At the end of this lab, you should understand: • How to develop, install and execute an exploit to make a target machine communicate back to the attacking machine using reverse shell. • How to develop an exploit which installs a VNC server connection on a target machine which can then be connected to. • How to develop, install and execute an exploit using Meterpreter. References : •Agarwal, M., & Singh, A. (2013). Metasploit penetration testing cookbook. Packt Publishing Ltd. •Bacudio, A. G., Yuan, X., Chu, B. T. B., & Jones, M. (2011). An overview of penetrationtesting. InternationalJournalofNetworkSecurity&Its Applications, 3(6), 19.
