Technical requirements
In this chapter, we make use of the following software and operating systems:
- For virtualization: VMware Workstation 12 Player for Virtualization (any version can be used)
- Code for the chapter: https://github.com/PacktPublishing/Mastering-Metasploit
- For penetration testing: Ubuntu 18.03 LTS desktop as a pentester's workstation VM having IP 192.168.248.151
You can download Ubuntu from https://ubuntu.com/download/desktop.
Metasploit 5.0.43 (https://www.metasploit.com/download)
Ruby on Ubuntu (apt install ruby)
Password list (https://github.com/danielmiessler/SecLists/blob/master/Passwords/Common-Credentials/500-worst-passwords.txt)
- Target System 1:
Microsoft Windows Server 2008 R2 Enterprise x64 with 2 GB of RAM
IIS 7.5 installed (https://docs.microsoft.com/en-us/iis/install/installing-iis-7/installing-iis-7-and-above-on-windows-server-2008-or-windows-server-2008-r2)
FileZilla 0.9.60 FTP server (https://filezilla-project.org/download.php?type=server)
Foxmail 6.5 (https://foxmail.en.uptodown.com/windows/download/3088)
- Target System 2:
Ubuntu Server 16.04 with SSH (service ssh start) enabled (credentials should be root:qwerty)
- Target System 3:
Microsoft Windows 7 Home Basic x32 with Windows Defender exception for the Downloads folder or any other equivalent folder (https://winaero.com/blog/exclusions-windows-defender-windows-10/)