After dealing with the restrictive (and to be fair, good practice-orientated) Microsoft, Linux should be a little ray of sunshine for all you vulnerability replicators out there. Linux embraces the idea that old doesn't necessarily mean bad, even when it sort of does. It is very useful for security researchers to have access to older binaries to play with and recreate the attacks of yore; after all, as someone more sensible than me pointed out, "those who ignore the past are doomed to repeat it." So, in this chapter, we'll hunt down all the older binaries, get them up and running in an organized format, and let our testers wreak havoc. In this chapter, we will specifically focus on the following topics:
The fundamental differences between managing Linux and Microsoft
In-depth setup of a vulnerable SMB service
In-depth setup of a vulnerable LAMP server
In-depth setup of a vulnerable operating system
In-depth setup of a vulnerable Telnet server
Exploit guides for all...