{"target":{"id":"metasploitable3","name":"Metasploitable 3 (Linux/Windows)","category":"Network Pentest","difficulty":"Intermediate","vulns_known":25,"legal_notice":"Rapid7-maintained intentionally-vulnerable VM. Free download from GitHub. Designed for Metasploit training.","docker":"rapid7/metasploitable3","url_demo":"Internal lab network only","kills":["vsftpd 2.3.4 backdoor (CVE-2011-2523)","Samba CVE-2017-7494 (SambaCry) RCE","DistCC CVE-2004-2687 RCE","IRC UnrealIRCd backdoor (CVE-2010-2075)","Apache Struts 2 RCE (CVE-2017-5638)"]},"script":[{"ts":"00:00–00:05","shot":"Tarun logo slam, glitch transition, synth bass drop","voice":"target locked: Metasploitable 3 (Linux/Windows).","screen":"Black → target logo → terminal opens"},{"ts":"00:05–00:15","shot":"Typing sequence: subfinder + httpx + nuclei","voice":"passive recon. mapped 25 live assets. one stands out.","screen":"Live terminal output streaming"},{"ts":"00:15–00:30","shot":"Vuln hypothesis + manual probe","voice":"this looks like a network pentest playground. testing the obvious.","screen":"Curl → response with injection sink highlighted"},{"ts":"00:30–00:55","shot":"Exploit chain: finding → POC → proof","voice":"and we have a intermediate-difficulty kill. root in 60 seconds.","screen":"shell pop. whoami. cat /etc/passwd. screenshot."},{"ts":"00:55–01:25","shot":"Tarun commentary + 'why this matters' overlay","voice":"the same bug class lives in production. here's what defenders miss.","screen":"Side-by-side: vulnerable training app vs real-world CVE"},{"ts":"01:25–01:30","shot":"Logo card, subscribe, 'next target: ___'","voice":"next target, in 24 hours. follow the build.","screen":"Tarun logo + social links + countdown to next show"}],"runtime_seconds":90,"render_assets":{"voice_needed":true,"music_track":"synthwave_90s.mp3 (royalty-free)","captions":"auto-generated, English, branded"}}