O'Reilly logo

Metasploit Revealed: Secrets of the Expert Pentester by Nipun Jaswal, Sagar Rahalkar

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Exploiting FTP services with Metasploit

Let's assume that we have another system in the network. Let's perform a quick nmap scan in Metasploit and figure out the number of open ports and services running on them as follows:

There are plenty of services running on the target. We can see we have vsftpd 2.3.4 running on port 21 of the target, which has a popular backdoor vulnerability. Let's quickly search and load the exploit module in Metasploit:

Let's set RHOST and payload for the module as follows:

We can see that when issuing the show payloads ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required