An Intentionally Vulnerable Machine for Exploit Testing
I really wanted to compete in the CTF competition, but i got caught up in some other stuff. Today (05-01-2017) i had plenty of free time at work. So I decided to go hunting for Metasploitable_3 flags :D. I'm posting some of the many ways to get shell on the system, how to get the flags and how to extract them. I believe there are 15 flags.
Metasploitable3 is a free virtual machine that allows you to simulate attacks largely using Metasploit. It has been used by people in the security industry for a variety of reasons: such as training for network exploitation, exploit development, software testing, technical job interviews, sales demonstrations, or CTF junkies who are looking for kicks, etc :-)
Instructions on how to build the VM can be found here or here.
Note: I'm using virtualbox with no guest tools installed, so no widescreen. :/