User Account

All Pages

Exploit a vulnerable service

Assignment Help Other Subject
Reference no: EM133184201

HACK2200 Hacking and Exploits

Lab: Gaining Access

Introduction
In this lab we will exploit a vulnerable service in order to 1- gain access and 2- maintain access to the Metaspolitable 3 machine MS3UBUNTU.

1- To gain access we will learn how to use an auxiliary scanner to brute force account/password combination.

We will be using a known vulnerability in Metasploitable: ProFTPD-1.3.5 Backdoor.

We will be using the auxiliary/scanner/ftp/ftp_login scanner to brute force accounts/passwords that can login to the ProFTPD service.

2- Cracking a username and a password is not enough. The user can, and will, change the password at one point, in which case you will lose access. Instead, once you get a user's password, you should use it to generate ssh rsa keys for key-based login to the system. This will enable you to connect to the victim even after the user changed their password.

In this lab, we will create a public/private key pair and use it to initiate a session with the victim.

Part 1 - Gain Access

Part 2 - Maintain Access

Lab Setup
We will use the machines you prepared during the first week: 1- Kali Linux 2020.4 (KaliVM)
2- Metasploitable 3 Ubuntu (MS3UBUNTU)

Part 1 - Gaining Access

Step 1: Start the lab virtual machines

1. Start your Kali virtual machine (KaliVM), and Metaspolitable3 Ubuntu (MS3UBUNTU) machine.
2. On your KaliVM, change the terminal prompt to be your first name. You can do that using the following command:
(kali@kali)-[~] PS1='[`date "+%D"`] yourfirstname [`date "+%r"`] -[~]' Your terminal should look similar to the screen below.
Take a screenshot to replace the one below, and place it under Screenshot#1 in the
answer file.
All commands in the following tasks are to be run on your KaliVM, targeting your MS3UBUNTU VM. Your terminal prompt should be showing as per the instructions above.

Step 2: Use a scanner to scan ports on MS3UBUNTU
1. On your KaliVM, scan the MS3UBUNTU machine, using the following command, note that -p- will result in scanning ports 0-65536.
KaliVM# sudo nmap -p- -sS -sV [target IP address]
You should be seeing results similar to the one below.

In this lab, we will exploit the ProFTPD 1.3.5 service.

Step 3: Use a scanner to brute force a password (gaining access)

1. First, we will brute force the metasploitable box to get an ftp username/password. Start an msfconsole on your KaliVM, change the console prompt, and search the ftp scanner options:

2. Let's set the scanner options and set them:

Take a screenshot to replace the one below, and place it under Screenshot#2 in the answer file.

3. Run the scanner:
Msf6> run

After some time, you should be able to get a few successful username/password combinations.
Question 1: What username/password are you using for this lab from the list you have obtained from the scanner?

Step 4: Use the username/password combination you captured to login.
1. Now try to ftp to the Metasploitable box using one of these credentials you captured, and test if you can list the directories:

Part 2 - Maintaining Access

Step 1: Generate the ssh keys
1. First, generate the keys on your Kali linux machine. Type id_rsa when asked to enter a file in which to save the key (this will create the default key id_rsa). Leave the passphrase empty. Next, Add the id_rsa to your local machine identity:

Take a screenshot to replace the one below, and place it under Screenshot#3 in the answer file.

Step 2: Send the key to the victim machine and connect using that key.
1. Send the public key to the victim system to enable ssh key-based login.
FTP login with the username/password combination you have, then issue the send command to send the id_rsa.pub file:

2. You can also send your public key to the remote system (victim) using the ssh-copy- id command as shown below:
replace xxx with the username you captured in part 1 of this lab.
# ssh-copy-id -i ~/id_rsa.pub xxxx@[target IP address] -f

3. Connect to the victim machine through the ssh session, login to metasploitable 3 machine without the password prompt
# ssh xxx@[target IP address]
As shown in the screenshot below, the session did not ask for a password this time. Instead, it used the public key/private key to establish the session.
Take a screenshot to replace the one below, and place it under Screenshot#4 in the answer file.

Attachment:- Gaining Access.rar

Reference no: EM133184201

Questions Cloud

Question on group composition : Group composition refers to the characteristics of the members that make up a team. This group composition impacts the effectiveness of the team. Each member of
Evp of strategic development : Your cousin Vinny works for a small manufacturing company in Windsor, CT. His business card has his title as EVP of Strategic Development, but that is a little
Privacy breaches and health care leaders : Discuss laws that apply to health care leaders who are part of a privacy breach as defined by HIPAA. From research, provide an actual example of a privacy breac
Alternative way to research information : Another informative and easy way to research a business is to phone the business directly. This is because the company can give you concise and correct informat
Exploit a vulnerable service : Exploit a vulnerable service in order to 1- gain access and 2- maintain access to the Metaspolitable 3 machine MS3UBUNTU
How does one choose an appropriate conflict style : 1. How does one choose an appropriate conflict style? (There are five types of conflict styles: avoiding, obliging, dominating, integrating, and compromising (H
Dollar on the foreign exchange markets : Write a paragraph about 300 words about the problem:You are the CFO of a US firm whose wholly owned subsidiary in Mexico manufactures component parts for your U
Explain prospective employee and for the organization : Reflect on the job you currently have or jobs you have held in the past. Based on what you have learned in this unit, what strategies did the organization use d
Discuss the importance of empathizing in the design process : Discuss the importance of empathizing in the design process. Next, identify a group of individuals and a problem that impacts them.

Reviews

Write a Review

Other Subject Questions & Answers

  Explain the factors that made the experiences the worst

Explain the factors that made the experiences the worst and best learning environments with references to what you have learned in the textbook.

  Prototypic dimensions of parenting

Based on 4 prototypic dimensions of parenting, which type of style do you believe best suits you or your parents approach?

  What are your views or opinions on hezbollah

Summarize the critical and sympathetic views regarding Hezbollah. What are your views/opinions on Hezbollah? Explain your thinking.

  Back to the future

There have been a lot of challenges that this nation has faced in the many months with the advent and sustainment of the COVID-19 Virus.

  How the treatment approach you selected might be evaluated

Reflect on the treatment outcome models as they relate to the research article you selected. Think about how the treatment approach you selected might be.

  Discuss about post-biblical rulers of palestine was jewish

The story of the Jewish tribes leaving Egypt and settling in Canaan is chronicled in which book?Discuss about post-biblical rulers of Palestine was Jewish

  Geospatial intelligence

Now that you have spent the last seven weeks looking at geospatial intelligence and have an understanding of what it is and how it is used,

  Define what ideas did it import and export

What ideas did it import and export. What trade goods did it import and export

  Long term care of the elderly and end of life issues

Describe the position of an individual that relates to both long term care of the elderly and end of life issues. Identify how the caregiver takes into consideration his or her patients' age, culture, family structure, et cetera, in working with pa..

  Describe how you will secure real property for your business

Describe how you will secure real property for your business. Will the statute of frauds affect the transfer of real property rights to your business

  Social control and criminal deviance-bullying

Bullying is a difficult concept to understand and reconcile the consequences. This assignment focuses on the critical thinking skills that are needed to analyze an emotionally charged topic.

  What have you noticed in your work or school environment

Identify the problem. What have you noticed in your work or school environment that isn't achieving the desired patient or learning outcomes?

Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

Submit Assignment

Academics

Major Subjects

Majors

Get In Touch

whatsapp: +1-415-670-9521

Phone: +1-415-670-9521

Email: [email protected]

TERMS & POLICIES

HELP & SUPPORT

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd