Client-side exploitation with Armitage
Client-side exploitation can be a helpful technique for penetration testing if we are unable to find a vulnerable operating system. As discussed earlier in Chapter 4, Client-side Exploitation and Antivirus Bypass, the client-side exploitation technique utilizes a vulnerability in an application installed on the target system such as Internet Explorer and Adobe Reader. In this recipe we will perform a Java-based client-side exploitation using Armitage on Windows 7.
Getting ready
We can start our penetration testing by launching a simple Nmap scan to figure out the IP address and other information about our target.
How to do it...
To perform a client-side exploitation, follow these steps:
- On the left pane of Armitage, ...
Get Metasploit Penetration Testing Cookbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
