-1

I have read on somewhere that:

"Do not run Metasploitable (an Intended Vulnerable Virtual Machine) in your Bridge Network."

Why? Does it create a bridge to the attacker's system directly? If yes, how does this happen?

Anders
  • 64,406
  • 24
  • 178
  • 215
Utkarsh Agrawal
  • 493
  • 1
  • 8
  • 15
  • 1
    I guess you mean "bridged" network adapter mode in Virtualbox. Say you run your PC in an untrusted network. Running it that way might expose vulnerable services of Metasploitable on your IP in the LAN. An attacker could infect the VM and use it for persistence / pivoting. – J.A.K. Jun 26 '18 at 07:30
  • Do you know what a Bridge Network is? – schroeder Jun 26 '18 at 08:49

1 Answers1

4

If you run Metasploitable bridged in your network, the VM is connected to the network directly. Everyone in the network has access to the VM so everyone can exploit the vulnerabilities.

The VM runs on your host so an attacker can use your resources. It could also be, that the attacker could escape the VM and attack your host device.

You should use a host only adapter to prevent this.

trietend
  • 824
  • 1
  • 6
  • 15
  • Or a NAT Network so different VMs can communicate with each other. Please see this answer for more details: https://superuser.com/questions/1095893/ipaddress-of-my-vm-doesnt-look-correct/1396375#answer-1396375 – Robert Brisita Jan 20 '19 at 19:49