Share
## https://sploitus.com/exploit?id=23DBF7D8-DD32-5D15-8D18-0CF069745409
# ๐งจ Metasploitable 2 Penetration Testing Lab
## ๐
Duration
2026
## ๐ Project Overview
Completed a hands-on penetration testing project in a controlled home lab using Metasploitable 2, an intentionally vulnerable virtual machine designed for ethical hacking practice.
Simulated a real-world penetration testing engagement covering reconnaissance, exploitation, and post-exploitation.
---
## ๐ฏ Objective
To understand offensive security techniques and demonstrate how vulnerabilities can lead to full system compromise, while reinforcing the importance of secure configuration and patching.
---
## ๐ ๏ธ Tools & Technologies
- Kali Linux
- Metasploit Framework
- Nmap
- VMware Workstation
- Metasploitable 2
---
## ๐ Reconnaissance
- Performed network scanning using Nmap
- Identified open ports, services, and versions
- Discovered vulnerable service: **vsftpd 2.3.4**
---
## ๐ฅ Exploitation
- Exploited **vsftpd 2.3.4 backdoor vulnerability (CVE-2011-2523)**
- Used Metasploit module:
`exploit/unix/ftp/vsftpd_234_backdoor`
- Successfully gained **root shell access**
---
## ๐ง Post-Exploitation
- Performed system enumeration
- Gathered system information
- Conducted basic credential inspection
---
## ๐ฏ Skills Demonstrated
- Network Scanning & Enumeration
- Vulnerability Identification & Exploitation
- Metasploit Framework Usage
- Penetration Testing Workflow
- Threat & Vulnerability Management
---
## ๐ Key Learnings
- Full pentesting workflow (Recon โ Exploit โ Post-Exploit)
- Risks of backdoors in software
- Importance of patching and secure configurations
---
## โ ๏ธ Ethical Disclaimer
All activities were performed in a fully isolated lab environment for educational purposes only. No real-world systems were targeted.
---
## ๐ธ Screenshots
(Add Nmap scan, Metasploit exploit, root shell access)