Installation of Metasploitable 2 and Network setup for testing

Installation of Metasploitable 2 OS and Network Setup for Pen-testing


What is Metasploitable 2?

Metasploitable 2 is an intentionally vulnerable Ubuntu Linux virtual machine that is designed for testing common vulnerabilities.

What are the benefits of Metasploitable? 

Metasploitable makes it easy to practice your scripts and exploits by allowing you to run a localized, vulnerable machine. Customizable: Metasploitable is a modular and customizable operating system, allowing the penetration tester only to use the features they need.

Installation of metasploitable 2

  • First search for rapid7 metasploitable 2(which is official).


  • click on the first link. you will see two links.

  • click on the second link and click on the download option.
  • metasploitable zip file will be downloaded.



  • Right-click on the zip file and click on extract here.
  • All files in the zip file will be extracted into a file named Metasploitable2-Linux.


  • make sure that you have Metasploitable2 virtual machine disk image in those files.


  • Now open the VirtualBox select tools and click on New option.


  • fill in the next few details as mentioned below:
  1. Name: Anything.
  2. Folder: can be default or you can choose a path.
  3. Type: Linux.
  4. Version: Ubuntu(64-bit).


  • Next, select the base memory and no of processors as per your choice.



  • in this step choose the "Use an existing virtual hard disk file." option.
  • click on the icon just beside the box.


  • click on the add button and select the metasploitable virtual disk image.
  • select the metasploitable disk image and click on choose(images related to it are below )




  • click on Next.



  • Check the summary and click on finish.


  • Now select metasploitable2 icon and click on start.

 



  • it will ask for the metasploitable login The default login credentials are:
      metasploitable login: msfadmin.
      password: msfadmin.


  • congratulations You have successfully installed Metasploitable2 on your VirtualBox

Network setup of testing

  • For testing, we need two operating systems that we can get through VirtualBox.
  • By default, all the OSs in VirtualBox use NAT(Network address translation) mode, in this all the operating systems get the same IP address(related images are below).




  • In order to overcome this problem we need to change the network mode from NAT to the Bridge Adapter mode.
  • Go into the settings of metasploitable2 and kali Linux (can be any OS).
  • select network and click on the arrow at the side of the box to get the other modes.
  • select Bridge Adapter mode(in both metasploitable and the other OS).



  • Now if we check the IP addresses the will be different.


  • Now we are ready to do testing.


    Contributors: 
      
    1. Mr. Salagrama Aditya, B.E CSE 4th semester, MVSR Engineering College, Hyderabad, Telangana, India
     
   2. Dr. Nitesh K Bharadwaj, Assistant Professor, Dept. of CSE, IIIT Pune.

    3. Dr. Bhupendra Singh, Assistant Professor, Dept. of CSE, IIIT Pune, India.

Comments

Post a Comment

Popular posts from this blog

Analysis of Volatile Memory(RAM) Using Volatility3

Image
  Introduction: Volatility3 is the most advanced and newest volatile memory forensics framework in the world. It is also Open Source, this framework is written in python. It is also the most widely used framework for extracting digital artefacts from volatile memory i.e. RAM image. The framework is intended to introduce people to the techniques for extracting digital artefacts from volatile memory(RAM) samples and provide a platform for further work into this exciting area of research. Downloading and Installation: Requirements: Python 3.5.3 or higher Pefile 2017.8.1 or later. Download volatility from   here  or run the following command in command line to clone the repository. git clone https://github.com/volatilityfoundation/volatility3.git RAM Image Creation: To create a memory dump for analysis we can use DumpIt memory tool which can be downloaded from here . Also, we can use ftkimager to create a memory dump, which can be downloaded from  here . To create the image using ftkima
Read more

$Recycle.Bin Forensics: Analysis of $I (metadata file) and $R (actual content)

Image
  Forensic Insight into Windows 10 $Recycle.Bin  In Windows 10, the deleted files are temporarily located in  "C:\$Recycle.Bin>",  a sub directory under root directory. The completion of file deletion process yields two separate files placed within the $Recycle.Bin path, as follows: $I – Contains metadata specific to the deleted file (original file name path, file size, deletion timestamp, file name size and, file name). $R – Contains the actual contents of the file. The two files ($I and $R) corresponding to the deleted file are named/suffixed with a random six character value after $I and $R, resulting  into a 8–character file name. The system creates SID based folders corresponding to each user account.   In the SID sub-folder, you will find the SID of the user who deleted the file. Each time a user deletes a file from the Recycle Bin, a sub-folder is created for them. As per the requirement an analyst can analyse the contents inside the SID sub-folders.  Let’s
Read more

Usefulness of Epoch in Digital Forensics Investigation (UNIX and MacOS perspective)

Image
 Usefulness of Epoch in Digital Forensics Investigation  (UNIX and MacOS perspective)  In digital forensics investigation, epoch plays an important role in event reconstruction. Hence, we try to provide detailed insight into the UNIX and MAC OS epoch values. An epoch is a date and time that a computer uses to determine the computer's clock and timestamp values. Epoch is sometimes also referred to as epoch time, POSIX time, and Unix time. In simple words, it is the starting point of the operating system that determines a computer’s date and time by counting ticks (seconds/ nanoseconds/picoseconds). Epochs can persist into the file metadata, system files, log files, and other metadata files. The value of epoch varies from operating system (OS) to OS and file system to file system.   The epoch traditionally corresponds to 0 hours, 0 minutes, and 0 seconds Coordinated Universal Time (UTC) on a specific date, which varies from system to system, as the starting date of each system i
Read more