Не секрет, что лучшим способом изучать ИБ - это пробовать все на практике. В свое время специалисты из Rapid7 даже выпустили специальную виртуальную машину Metasploitable, который по сути является простым сервером, просто сконфирурированный таким образом, что бы он был уязвим по своему дизайну. Специалисты из CTF365 пошли еще дальше и решили предоставить такой сервис в облаке.
За прошедшие несколько лет Metasploitable очень хороше себя зарекомментовал. Можно сказать, что это не просто хороший инструмент, позволяющий проверить свои знания в вопросах информационной безопасности. По сути дела он стал методическим пособием во многих университетских курсах по ИБ. Если набрать в YouTube слово Metasploitable, то можно найти большое количество видеороликов, и наглядно посмотреть что и как можно сделать.
Теперь пользоваться Metasploitable стало еще проще. Теперь нет необходимости что-то качать, устанавливать и т.д. Специалисты CTF365 уже подняли сервер на своем хостинге и готовы дать бесплатный доступ к нему по VPN всем зарегистрированным участникам соревнования CTF365.
Конечно в этом нет ничего уникального, тем не менее приятно, что такие вещи существуют как сервис и если хочется поднять свои навыки в ИБ можно просто зарегистрироваться, открыть в дополнительной вкладке браузера YouTube и начать изучение. Не знаю интересен ли такой сервис нашим читателям, тем не менее решил, что знать о такой возможности не будет лишним.
Подробнее можно почитать здесь.
Joomla! Debug Console
session.client.browser ⇒ Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
password_clear ⇒
groups ⇒
session.token ⇒ 153db586640108fc1ac2bc59e62c6699
6.15 MB (6,453,248 Bytes)
77 Queries Logged
DELETE
FROM `j25_session`
WHERE `time` < '1747256753'SELECT `session_id`
FROM `j25_session`
WHERE `session_id` = 'ac46fd104bbd8ed31606ffb139efea89'
LIMIT 0, 1INSERT INTO `j25_session`
(`session_id`, `client_id`, `time`)
VALUES
('ac46fd104bbd8ed31606ffb139efea89', 0, '1747259453')SELECT b.id
FROM j25_usergroups AS a
LEFT JOIN j25_usergroups AS b
ON b.lft <= a.lft
AND b.rgt >= a.rgt
WHERE a.id = 1SELECT id, rules
FROM `j25_viewlevels`SELECT m.id, m.menutype, m.title, m.alias, m.note, m.path AS route, m.link, m.type, m.level, m.language,m.browserNav, m.access, m.params, m.home, m.img, m.template_style_id, m.component_id, m.parent_id,e.element as component
FROM j25_menu AS m
LEFT JOIN j25_extensions AS e
ON m.component_id = e.extension_id
WHERE m.published = 1
AND m.parent_id > 0
AND m.client_id = 0
ORDER BY m.lftSHOW FULL COLUMNS
FROM `j25_easyblog_configs`SELECT *
FROM j25_easyblog_configs
WHERE `name` = 'config'SHOW FULL COLUMNS
FROM `j25_easyblog_post`SELECT a.`id`
FROM j25_easyblog_post as a
WHERE a.`permalink` = 'uchimsya:pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable'SELECT a.`id`
FROM j25_easyblog_post as a
WHERE a.`permalink` = 'uchimsya-pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable'SELECT *
FROM j25_easyblog_post
WHERE `id` = '530'DELETE
FROM `j25_easyblog_mailq`
WHERE `status`='1'
AND DATEDIFF(NOW(), `created`) >= 7SELECT `id`
FROM `j25_easyblog_mailq`
WHERE `status` = 0
ORDER BY `created` ASC
LIMIT 5SELECT *
FROM `j25_easyblog_post`
WHERE `publish_up` <= '2025-05-14 21:50:53'
AND `published` = '2'
AND `ispending` = '0'
ORDER BY `id`
LIMIT 5UPDATE `j25_easyblog_post`
SET `published` = '0'
WHERE `publish_down` > `publish_up`
AND `publish_down` <= '2025-05-14 21:50:53'
AND `publish_down` != '0000-00-00 00:00:00'
AND `published` != '0'
AND `published` != '3'
AND `ispending` = '0'SELECT a.rules
FROM j25_assets AS a
WHERE (a.id = 1)
GROUP BY a.id, a.rules, a.lftSHOW FULL COLUMNS
FROM `j25_assets`SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT b.rules
FROM j25_assets AS a
LEFT JOIN j25_assets AS b
ON b.lft <= a.lft
AND b.rgt >= a.rgt
WHERE (a.id = 1)
GROUP BY b.id, b.rules, b.lft
ORDER BY b.lftSHOW FULL COLUMNS
FROM `j25_easyblog_users`SELECT COUNT(*)
FROM `j25_easyblog_configs`
WHERE `name` = 'default'SELECT *
FROM j25_easyblog_configs
WHERE `name` = 'default'SELECT *
FROM `j25_easyblog_acl`
WHERE `published`=1
ORDER BY `id` ASCSELECT *
FROM `j25_easyblog_acl_group`
WHERE `content_id`='1'
AND `type`='
group'SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT id, keywords, description, indexing
FROM `j25_easyblog_meta`
WHERE content_id = '530'
and type = 'post'SELECT *
FROM j25_easyblog_post
WHERE `id` = '530'SHOW FULL COLUMNS
FROM `j25_easyblog_category`SELECT *
FROM j25_easyblog_category
WHERE `id` = '2'SELECT COUNT(1)
FROM `j25_easyblog_category`
WHERE `alias`='news'
AND `id`!='2'SELECT *
FROM j25_easyblog_post
WHERE `id` = '530'SELECT *
FROM j25_easyblog_category
WHERE `id` = '2'SELECT COUNT(1)
FROM `j25_easyblog_category`
WHERE `alias`='news'
AND `id`!='2'SHOW FULL COLUMNS
FROM `j25_discuss_users_history`INSERT INTO `j25_discuss_users_history` (`user_id`,`title`,`command`,`created`,`content_id`)
VALUES ('0','Viewed blog post, Учимся пентесту с помощью облачного сервиса Metasploitable.','easyblog.view.blog','2025-05-14 21:50:53','0')UPDATE j25_easyblog_post
SET `hits` = (`hits` + 1)
WHERE id = '530'SHOW FULL COLUMNS
FROM `j25_komento_configs`SELECT *
FROM j25_komento_configs
WHERE `component` = 'com_komento'SELECT COUNT(1)
FROM `j25_easyblog_featured`
WHERE `content_id` = '530'
AND `type` = 'post'SELECT a.`id`, a.`title`, a.`alias`
FROM `j25_easyblog_tag` AS a
LEFT JOIN `j25_easyblog_post_tag` AS b
ON a.`id` = b.`tag_id`
WHERE b.`post_id` = '530'
AND a.`published` = '1'
ORDER BY a.`title` ASCSELECT *
FROM j25_easyblog_users
WHERE `id` = '81'SHOW FULL COLUMNS
FROM `j25_users`SELECT *
FROM `j25_users`
WHERE `id` = 81SELECT `g`.`id`,`g`.`title`
FROM `j25_usergroups` AS g
INNER JOIN `j25_user_usergroup_map` AS m
ON m.group_id = g.id
WHERE `m`.`user_id` = 81SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT *
FROM j25_easyblog_category
WHERE `id` = '2'SELECT COUNT(1)
FROM `j25_easyblog_category`
WHERE `alias`='news'
AND `id`!='2'SELECT `title`
FROM `j25_easyblog_category`
WHERE `id` = '2'SHOW FULL COLUMNS
FROM `j25_easyblog_tag`SELECT *
FROM j25_easyblog_tag
WHERE `id` = '85'SELECT COUNT(1)
FROM `j25_easyblog_tag`
WHERE `alias`='metasploit'
AND `id`!='85'SELECT *
FROM j25_easyblog_tag
WHERE `id` = '6'SELECT COUNT(1)
FROM `j25_easyblog_tag`
WHERE `alias`='bezopasnost'
AND `id`!='6'SELECT id
FROM j25_assets
WHERE parent_id = 0SELECT *
FROM j25_tagmeta_rules
WHERE ( ( ('/entry/uchimsya-pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable?print=1&tmpl=component' REGEXP BINARY url)>0
AND (case_sensitive<>0)
AND (decode_url<>0)
AND (request_only<>0) ) OR ( ('/entry/uchimsya-pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable?print=1&tmpl=component' REGEXP BINARY url)>0
AND (case_sensitive<>0)
AND (decode_url=0)
AND (request_only<>0) ) OR ( ('https://networkdoc.ru/entry/uchimsya-pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable?print=1&tmpl=component' REGEXP BINARY url)>0
AND (case_sensitive<>0)
AND (decode_url<>0)
AND (request_only=0) ) OR ( ('https://networkdoc.ru/entry/uchimsya-pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable?print=1&tmpl=component' REGEXP BINARY url)>0
AND (case_sensitive<>0)
AND (decode_url=0)
AND (request_only=0) ) OR ( ('/entry/uchimsya-pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable?print=1&tmpl=component' REGEXP url)>0
AND (case_sensitive=0)
AND (decode_url<>0)
AND (request_only<>0) ) OR ( ('/entry/uchimsya-pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable?print=1&tmpl=component' REGEXP url)>0
AND (case_sensitive=0)
AND (decode_url=0)
AND (request_only<>0) ) OR ( ('https://networkdoc.ru/entry/uchimsya-pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable?print=1&tmpl=component' REGEXP url)>0
AND (case_sensitive=0)
AND (decode_url<>0)
AND (request_only=0) ) OR ( ('https://networkdoc.ru/entry/uchimsya-pentestu-s-pomoshchyu-oblachnogo-servisa-metasploitable?print=1&tmpl=component' REGEXP url)>0
AND (case_sensitive=0)
AND (decode_url=0)
AND (request_only=0) ) )
AND published=1
ORDER BY ordering
43 Query Types Logged, Sorted by Occurrences.
SELECT Tables:
25 × SELECT id
FROM j25_assets3 × SELECT *
FROM j25_easyblog_category3 × SELECT COUNT(1)
FROM `j25_easyblog_category`3 × SELECT *
FROM j25_easyblog_post2 × SELECT a.`id`
FROM j25_easyblog_post as a2 × SELECT COUNT(1)
FROM `j25_easyblog_tag`2 × SELECT *
FROM j25_easyblog_tag2 × SELECT *
FROM j25_easyblog_configs1 × SELECT COUNT(1)
FROM `j25_easyblog_featured`1 × SELECT *
FROM j25_komento_configs1 × SELECT a.`id`, a.`title`, a.`alias`
FROM `j25_easyblog_tag` AS a
LEFT JOIN `j25_easyblog_post_tag` AS b
ON a.`id` = b.`tag_id`1 × SELECT `title`
FROM `j25_easyblog_category`1 × SELECT *
FROM j25_tagmeta_rules1 × SELECT `g`.`id`,`g`.`title`
FROM `j25_usergroups` AS g
INNER JOIN `j25_user_usergroup_map` AS m
ON m.group_id = g.id1 × SELECT *
FROM `j25_users`1 × SELECT *
FROM j25_easyblog_users1 × SELECT *
FROM `j25_easyblog_acl`1 × SELECT `id`
FROM `j25_easyblog_mailq`1 × SELECT m.id, m.menutype, m.title, m.alias, m.note, m.path AS route, m.link, m.type, m.level, m.language,m.browserNav, m.access, m.params, m.home, m.img, m.template_style_id, m.component_id, m.parent_id,e.element as component
FROM j25_menu AS m
LEFT JOIN j25_extensions AS e
ON m.component_id = e.extension_id1 × SELECT id, rules
FROM `j25_viewlevels1 × SELECT b.id
FROM j25_usergroups AS a
LEFT JOIN j25_usergroups AS b
ON b.lft <= a.lft
AND b.rgt >= a.rgt1 × SELECT *
FROM `j25_easyblog_post`1 × SELECT a.rules
FROM j25_assets AS a1 × SELECT *
FROM `j25_easyblog_acl_group`1 × SELECT `session_id`
FROM `j25_session`1 × SELECT COUNT(*)
FROM `j25_easyblog_configs`1 × SELECT b.rules
FROM j25_assets AS a
LEFT JOIN j25_assets AS b
ON b.lft <= a.lft
AND b.rgt >= a.rgt1 × SELECT id, keywords, description, indexing
FROM `j25_easyblog_meta`
OTHER Tables:
1 × INSERT INTO `j25_discuss_users_history` (`user_id`,`title`,`command`,`created`,`content_id`)
VALUES ('0','Viewed blog post, Учимся пентесту с помощью облачного сервиса Metasploitable.','easyblog.view.blog','2025-05-14 21:50:53','0'1 × SHOW FULL COLUMNS
FROM `j25_discuss_users_history1 × UPDATE j25_easyblog_post
SET `hits` = (`hits` + 1)1 × SHOW FULL COLUMNS
FROM `j25_komento_configs1 × SHOW FULL COLUMNS
FROM `j25_easyblog_tag1 × SHOW FULL COLUMNS
FROM `j25_users1 × SHOW FULL COLUMNS
FROM `j25_easyblog_category1 × SHOW FULL COLUMNS
FROM `j25_easyblog_users1 × SHOW FULL COLUMNS
FROM `j25_easyblog_configs1 × INSERT INTO `j25_session` (`session_id`, `client_id`, `time`)
VALUES ('ac46fd104bbd8ed31606ffb139efea89', 0, '1747259453'1 × SHOW FULL COLUMNS
FROM `j25_easyblog_post1 × DELETE
FROM `j25_easyblog_mailq`1 × SHOW FULL COLUMNS
FROM `j25_assets1 × UPDATE `j25_easyblog_post`
SET `published` = '0'1 × DELETE
FROM `j25_session`