Metasploit - Vulnerable Target

A vulnerable target is a machine or device with an unpatched security hole. It makes the host vulnerable, which is the target in this case.

For testing purpose, Rapid7 has created a VM machine with plenty of vulnerabilities. Keep in mind that you are not allowed to penetrate any device without permission. Hence, you need to download metasploitable which is a Linux machine.

Metasploitable can be downloaded from −

Download Metasploitable

Fill out the form to register yourself. Next, you will get the following screen with a direct link to download Metasploitable.


Next, open the VirtualBox Manager and go to Machine → New.

VirtualBox Manager

Click “Use an existing virtual hard disk file" and browse to the location where you have downloaded Metasploitable. Click Open.

Click Open

On the next screen, click Create.

Click Create

Now, you can login to Metasploitable using the default username: msfadmin and password: msfadmin.

Metasploitable Login
Kickstart Your Career

Get certified by completing the course

Get Started