Use Metasploit frameworks to investigate with penetration testing techniques and tools to gather vulnerabilities in remote servers.
Show the effects of Anti-forensic and Anti-Anti-forensic tools and techniques
Objectives:
Exploiting the particular version of the FTP service VSFTPD v2.3.4 showing the vulnerability in a Linux server exploiting a malicious Backdoor.
Using Metasploit for DOS Slowloris attack: Slowloris is a type of denial of service attack tool which allows a single machine to take down another machine’s web server with minimal bandwidth and side effects on unrelated services and ports. Slowloris tries to keep many connections to the target web server open and hold them open as long as possible.
What is slowloris DoS attack?
Slowloris is an application layer DDoS attack which uses partial HTTP requests to open connections between a single computer and a targeted Web server, then keeping those connections open for as long as possible, thus overwhelming and slowing down the target.
ANTI FORENSICS techniques using Steghide – Steghide is a steganography program that is able to hide data in various kinds of image- and audio-files.
Use of Meterpreter – Meterpreter is a Metasploit attack payload that provides an interactive shell from which an attacker can explore the target machine and execute code. Meterpreter is deployed using in-memory DLL injection. As a result, Meterpreter resides entirely in memory and writes nothing to disk.