As always this event and ALL events we host will be conducted in a controlled, legal manner using equipment you either own or have permission to hack into. All information presented is for informational purposes only and to raise awareness of cyber security issues so that you can better defend yourselves against these types of attacks. We in no way support or condone any illegal activity and take no responsibility for your actions if you miss use the information presented. Also, we will report you to the authorities if we find out that you are using the information we provide for illegal purposes. Our goal and intent is to raise cyber security awareness with the general public and to teach IT technicians and programmers the value of keeping networks and applications secure. Always remember, hacking anything you do not own without written permission by the owner is a felony, so don't do it. It is safe and legal to learn on your own equipment, so set up your own labs on our own systems if you want to learn cyber security and penetration testing. If you have questions email me and I will help you get started in a safe legal manner by pointing you in the right direction.
Now with legalities out of the way...
For our 3nd event I chose to dig a little deeper and go into Armitage and Nessus. As always I am open to whatever our members want to cover for hands on topics. Let me know if you are interested in teaching a topic yourself and we can schedule it.
At our 3nd event you will be introduced to Armitage, Metasploit's GUI and the Nessus vulnerability scanner. In this ethical hacker lab you will learn how to quickly identify commonly known vulnerabilities in any system you encounter and how to take advantage of low hanging fruit and easy entry points into that system. No longer will you be reliant on knowing particular vulnerabilities the system is vulnerable to like in our last ethical hacker labs but you will now know how to find vulnerabilities of your own.
This will be a very informative ethical hacker lab, so I hope you can make it.
For this 3nd hacker lab, you will want to bring your laptop preloaded with the following.
1. A Kali Linux virtual machine
2. A Windows XP virtual machine running Service Pack 2
3. Nessus installed preferably on your base OS (not your VM)
Prior to attending, Please download and install a copy of VMware player found here:
and create a Virtual Machine of Kali Linux which can be found here:
and download a copy of Nessus found here: (use the home feed for licensing)
Also you will want to create a Windows XP Virtual Machine and only install Service Pack 2 (do not run Windows Update since that will patch the security vulnerability we will be exploiting in this hacker lab)
Once you have these two virtual machines created you will be able to practice hacking into your Windows XP virtual machine on your own laptop from your Kali Linux virtual machine, which I will show you how to do in this hacker lab.
Note: it is important that you set these systems up prior to attending our event since these operating systems will take time to download and install.
If setting these virtual machines up is beyond your skill set don't worry, you will still get to see how the attack is implemented, you just won't be able to perform the attack yourself on your own machine due to time constraints.
Again please RSVP to this event early so that I can get a gauge of how many people will be attending. This way I can reserve space at American Junkie.
I look forward to sharing a beer with you and showing you post exploitation attacks against a Windows XP machine. :-)
If you have any questions feel free to email me.