Hi there,
I think I have found the right forum section - I will be starting my final year at uni soon and we will be doing some pen testing using VMWare images. What I would like to know and what I haven't been able to find out is, is it easy?
We will be given a few images of a web server, a workstation (and something else) to work on
I have identified Nikto as the tool to use to pen test the web server image.
What I am trying to get at is how is Backtrack used to 'connect' to the virtual image?
I'm so confused - I think I may fail all of this
I will try to give you a picture of how typically it all works.
Your host os can be any OS of your choice.
One of your guest os will be backtrack and the other guest os will be the webserver image. If you have chosen "bridge" mode while configuring both the VMs then you will see both the machines as a part of your LAN connected directly to the router. Both the webserver VM and backtrack VM are now in the LAN. You can attack the webserver VM, from the backtrack VM.
But setting up your VMs in bridge mode should be AVOIDED unless they are patched.
You should instead use "host-only" mode while configuring the VMs as a vulnerable webserver image is involved.
If this does not make much sense now, once you are setting up the vms yourself you will get the full picture. Just get in and start getting your hands dirty. You will be fine.
Dont be scared. If you enjoy hacking this will be the most fun you ever had in your academic life.
Programming : Finished Python Course in Codecademy now what?
