Re: Pentesting lab

[Felipe Martins <martins.felipe.security () gmail com>]

Hi,

   Some days ago Robert Portvliet has posted some nice links about 
this, one of them, as shown below, has some good steps on downloading 
Virtual Machines for making a controlled PenTest Study Lab focused on 
the Metasploit 4 framework:
     
   Free Metasploit course from Offensive Security: 
(http://www.offensive-security.com/metasploit-unleashed/)

   There is also a very good application for testing WebApps PenTest 
called WebGoat ().

   I'm also looking for another vunerable VM or ISO to download for my 
studies on pentesting. Hope the information above helps you.

Regards

s3c.b3n wrote:
> Hi all,
>
> I'm just starting my career a security specialist. I'm interested in
> creating my own penetration testing lab. To test exploits (metasploit
> epically) I need some targets (vulnerable servers). Are there such
> servers (VM images or ISOs) for general services like OWASP for web
> apps? or are there any scripts or applications that can create those
> vulnerabilities.
>
> My main goal is to get familiar with the existing tools.
>
> Thanks
>   

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------