Revising the approach

Let us summarize the entire penetration test step by step:

  1. In the very first step, we did an NMAP scan over the target.
  2. We found that VSFTPD 2.3.4 is running on port 21 and is vulnerable to attack.
  3. We exploited VSFTPD 2.3.5 running on port 21.
  4. We got the shell access to the target running at 192.168.10.112.

    Revising the approach

  5. We created a Linux meterpreter shell and copied it to the /var/www directory of Apache. Next, we ran the wget command from the shell and downloaded our newly created meterpreter shell onto the target.
  6. We assigned full privileges to the shell backdoor file via chmod 777 backdoor.elf.
  7. Setting up an exploit handler in a separate ...

Get Mastering Metasploit now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial