Rooting on Metasploitable : Ubuntu Server

Now I'll show how to rooting on ubuntu server, this is vulnerable server running on ubuntu machine, and how to attacking this machine we need to powerful tool that is Metasploit, this is my favorite tools on Backtrack cause multicomplex function of ability, I called this tools "Ametasploiterasu".

For mapping network and indentification of target service use nmap

So now we can look service and version of target system, from this data we can search vulnerable service to gate enterance into target machine, now open console of Ametasploiterasu (MSFCONSOLE) on terminal

I choose to try exploiting on samba service, I choose that caused by nmap result, so when I open msf console and search exploit for samba

I choose this exploit, cause this explout is multi samba and have rank excellent, use this exploit like here

I look option by type "show options" and we can look what the next option we need to fill, like LHOST as own IP, RHOST as IP Target, RPORT as Port we'll use on target machine and PAYLOAD as shellcode to get system on target here I do

And run exploit to try injecting payload and exploit into target system if that is success that will show process like this

After enterance into target machine we can try to type "ls" to look directory like this

I try to check id and who as I now in machine with command id and whoami

Now we had as root that mean we sucess get root or rooting in target system, after all we can get password hash into /etc/shadow

And now its time to crack password from this hash in /etc/shadow, I copy this into text editor and save as txt format and I save into john folder cause I use john the ripper to crack password hash like this

Finish.