So I’m writing a thesis where pentesting is not the main focus. But I’ve decided to spoof a service of some sort, and run a bunch of metasploits/exploits to prove some of my points. Since I don’t really have the time to learn pentesting from scratch, I’m looking for shortcuts with a bunch of low hanging fruit exploits (and some complex ones). However, what I’d like is that the service is in use in some shape or form. So no services that are 20 years out of commission.
Is anyone aware of such a service? Databases, web servers, tools with networking etc.