Lab 11.1 - Adam-Hachem/SEC335 GitHub Wiki

This lab was all about Metasploit. For organizational purposes, I've kept all my documentation on how to use Metasploit here.

Reflection

Using Metasploit made it significantly easier to gain a foothold on the machines, as everything was automated. It eliminated some manual steps and put me into meterpreter shell. This made it significantly easier to do more advanced or interactive functions that would be challenging on the semi-functional shell you would get when exploiting manually. It must be acknowledged however that the Metasploit framework is much smaller than Exploit-DB, so Metasploit's true purpose is to streamline the process of hacking at the cost of losing some functionality that is inevitable with automated tools. It is also important to note that these exploits can be dangerous, using them without understanding them can easily lead to unexpected problems and/or legal trouble depending on what you are using it for.