Penetration Testing mailing list archives
Re: Pentesting lab
From: Felipe Martins <martins.felipe.security () gmail com>
Date: Tue, 29 Dec 2009 15:43:47 -0200
Hi,Some days ago Robert Portvliet has posted some nice links about this, one of them, as shown below, has some good steps on downloading Virtual Machines for making a controlled PenTest Study Lab focused on the Metasploit 4 framework: Free Metasploit course from Offensive Security: (http://www.offensive-security.com/metasploit-unleashed/)
There is also a very good application for testing WebApps PenTest called WebGoat ().
I'm also looking for another vunerable VM or ISO to download for my studies on pentesting. Hope the information above helps you.
Regards s3c.b3n wrote:
Hi all, I'm just starting my career a security specialist. I'm interested in creating my own penetration testing lab. To test exploits (metasploit epically) I need some targets (vulnerable servers). Are there such servers (VM images or ISOs) for general services like OWASP for web apps? or are there any scripts or applications that can create those vulnerabilities. My main goal is to get familiar with the existing tools. Thanks
------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review BoardProve to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Pentesting lab s3c.b3n (Dec 29)
- Re: Pentesting lab Chris Griffin (Dec 29)
- Re: Pentesting lab Curt Shaffer (Dec 29)
- Re: Pentesting lab Felipe Martins (Dec 29)
- Re: Pentesting lab Scott (Dec 29)
- Re: Pentesting lab Robin Wood (Dec 29)
- RE: Pentesting lab Amardeep Singh (Dec 29)
- Re: Pentesting lab John Holbrook (Dec 29)
- Re: Pentesting lab Robert Portvliet (Dec 29)