Practice Linux Penetration Testing Skills with Metasploitable

Friday, May 18, 2012

Dan Dieterle


Okay, you have been reading up on computer security, and even played around with Backtrack some.

You have been gaining some penetration testing skills, but now you want to try them out. What do you do?

There are several sites that exist that allow you to (legally) test your abilities, but why not try them out on Metasploit’s own Metasploitable?

Metasploitable is a VMWare Ubuntu 8.04 image that is purposefully left with several vulnerabilities so you can check out your mad skills.

Okay, before I get a bunch of e-mails about this, yes Ubuntu (Linux) has vulnerabilities.

That is why you need to update your Linux software just as you would your Windows boxes.

Metasploitable is running several services that have not been patched and it is a non-persistent image (changes are not saved) so you can play to your hearts content and if you really mess up, just re-boot and the Ubuntu image will be restored to original.

The best way to become a good penetration tester is to practice. And Metasploitable is a good Linux platform to play with.

I will not go into to much depth (there are plenty of Metasploitable tutorials out there already) but in my next post  I will show you how to get root access on the image using Backtrack 5R2.

Metasploitable – Check it out!

Cross-posted from Cyber Arms

Possibly Related Articles:
Information Security
Hacking Tools Penetration Testing Linux Backtrack Metasploit Network Security Pentesting Metasploitable
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.