Upgrade from A Shell Session into Meterpreter Session Using Metasploit

If we talk about Metasploit notably in Kali Linux, there is no enough time for discussing it. Eventhough it is a free version (not enterprise or Pro version), Metasploit Community version is fully enough for us to exploit a vulnerable system.

As described at their website, Rapid7 claimed that metasploit is the world’s most used penetration testing framework. Continue reading

Simple CTF : From SQLinjection to Webshell

There is an interesting sample for practicing how to do a CTF (simple CTF). It is a VM which had been created by Pentesterlab Team. We can download the VM at the link. The VM is one of hundreds exercises develoved by Pentesterlab as part of the White Badge. The white badge is the easiest badge that covers a wide range of web vulnerabilities Continue reading