Metasploit and its applications in pentest and anti-forensics

Aims:
Use Metasploit frameworks to investigate with penetration testing techniques and tools to gather vulnerabilities
in remote servers.
Show the effects of Anti-forensic and Anti-Anti-forensic tools and techniques
Objectives:
Exploiting the particular version of the FTP service VSFTPD v2.3.4 showing the vulnerability in a Linux server
exploiting a malicious Backdoor.
https://medium.com/cyberdefendersprogram/kali-linux-metasploit-getting-started-with-pen-testing-89d28944097b
Using Metasploit for DOS Slowloris attack: Slowloris is a type of denial of service attack tool which allows a
single machine to take down another machine’s web server with minimal bandwidth and side effects on
unrelated services and ports. Slowloris tries to keep many connections to the target web server open and hold
them open as long as possible.
https://linuxhint.com/metasploit_usage_examples/
What is slowloris DoS attack?
Slowloris is an application layer DDoS attack which uses partial HTTP requests to open connections between a
single computer and a targeted Web server, then keeping those connections open for as long as possible, thus
overwhelming and slowing down the target.
ANTI FORENSICS techniques using Steghide – Steghide is a steganography program that is able to hide data in
various kinds of image- and audio-files.
Use of Meterpreter – Meterpreter is a Metasploit attack payload that provides an interactive shell from which an
attacker can explore the target machine and execute code. Meterpreter is deployed using in-memory DLL
injection. As a result, Meterpreter resides entirely in memory and writes nothing to disk.
I have attacked a template coursework in doc (Metasploit-Pentesting-Anti Forensic report) with a table of
content that I would like to be followed to better answer my marking criteria. I also add some information that I
picked in some sources to better follow my criteria to write it. I have also attached some main sources to follow.

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes:

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>