Cyber Security Academy · Lesson

Exploiting a Known Vulnerability

Use an exploit module against a vulnerable target in a lab; interpret session output.

Ethics and Authorization First

Exploitation is only legal against systems you own or have explicit written authorization to test. All examples here are for authorized lab environments. Unauthorized exploitation is a criminal offense.

Lab Setup Recommendation

Use intentionally vulnerable VMs: Metasploitable2/3, DVWA, VulnHub machines, or HackTheBox/TryHackMe for legal practice. Never test on production or real-world systems without a signed scope document.

# Download Metasploitable2
# https://sourceforge.net/projects/metasploitable/

# Or use VulnHub
# https://www.vulnhub.com/

# Network: host-only adapter (isolated)

All lessons in this course

Metasploit Architecture and msfconsole
Exploiting a Known Vulnerability
Payloads: Staged vs Stageless, Meterpreter
Post-Exploitation: Pivot and Persist

← Back to Cyber Security Academy