I'm on kali linux
not what i meantAbout any other linux distro or even windows can be used, but kali
which you are running right now
is the best as it has almost every tool you need preloaded with a debian base or you can also use a distro called blackarch which is the same as kali, but has an Arch linux base instead of debian
As in the 'victim' OS? Or the OS that you want to pentest against?not what i meant
I meant whats the best os to use the exploits on?
Yeah the victimAs in the 'victim' OS? Or the OS that you want to pentest against?
Any OS with security issues or a vulnerability then Windows, Linux, Mac OSX, even cisco IOSYeah the victim
I mainly want to test windowsAny OS with security issues then Windows, Linux, Mac OSX, even cisco IOS
Don't know what sort of exploit you are wanting to do since there are a good lot, but I don't think there needs to be an 'insecure version' since making a .exe via msfvenom and sending it over to the victim machine would do just as well. If you want to test metasploit, just doing a fresh install of windows 10 off of a USB drive should be fine. Also depending on what results you are going after, you can even pentest against windows 7 rather than 10(Businesses can still be on Windows 7/Windows Server 2008).I mainly want to test windows
But i cant find a good insecure version
Mainly hoping to test remote pc code execDon't know what sort of exploit you are wanting to do since there are a good lot, but I don't think there needs to be an 'insecure version' since making a .exe via msfvenom and sending it over to the victim machine would do just as well. If you want to test metasploit, just doing a fresh install of windows 10 off of a USB drive should be fine. Also depending on what results you are going after, you can even pentest against windows 7 rather than 10(Businesses can still be on Windows 7/Windows Server 2008).
Would suggest anything before March 14, 2017 if you have it as MS issued the update for the SMB protocol thenMainly hoping to test remote pc code exec
Using big exploits like eternal blue
Double pulsar
ThanksWould suggest anything before March 14, 2017 if you have it as MS issued the update for the SMB protocol then
Or you should be able to uninstall updates from the current version of the ISO that MS has out there to be able to get a base version of windows. Haven't tested it with those versions however I have uninstalled updates before on Win10, 7, and 8, but seeing as the ISOs come out with the 2018 updates already installed then you should be able to just uninstall them.
Thanks
I'm gonna try getting a untouched win7 iso
Last question
I Like testing on xp
But i cant find a 64 bit version of xp that works with the ms08_067 netapi exploit
Is there a version of 64 bit xp that works with dis sploit?
I also use armitage alot of the time
Thanks!I don't know what version MS is pushing out for XP or any other sites that provide it such as the first link when you google '64 bit xp download', but kb958644 is the package that patches the netapi exploit. Uninstall that(Method of uninstalling the package should be similar to Win7, Win8, or Win10)
Look if you have nothing helpful to sayuse Firefox OS![]()
Might try blackarchKali is best, but only because everything is ready to use, you can compile most tools for most distros.
Look if you have nothing helpful to say
just don't post
I'm on kali linux
Whats the best os to use tools like metasploit on?

