Today I am trying a hackthebox machine named BLUE
Machine IP:- 10.10.10.40
Let’s start with the scanning and I am scanning with the help of Nmap
Nmap Command :- nmap -sC -sV -oA nmap 10.10.10.40
After scanning I found service is running on port no. 445 named Microsoft-ds and version of the service is Windows 7 Professional 7601 Service Pack 1 Microsoft-ds.
I search the version on google and find some interesting
There is an exploit on exploit-DB.
I opened the 2nd link and the result is
I found an exploit named MS17-010
I open Metasploit in the terminal and search for exploit.
And I found an exploit there named exploit/windows/smb/ms17_010_externalblue
I use this exploit and try to get the reverse shell of machine
And I get the reverse shell of machine
After some enumeration, I found the user.txt and root.txt
Thank you
Happy Hacking
This Walkthrough is written by Amit. Amit is a penetration testing student at Azure Skynet. You can contact him from here.