IT and security stuff

HTB – Blue writeup

Starting with enumeration we find out the “blue” machine is an old Windows 7 SP1, which means it is very vulnerable. There is fortunately an SMB server running which has Message Signing not required. We could try SMB relay here but since the machine’s name is “blue” let’s cut to the chase 😉

The vulnerability I will exploit is known as Eternal Blue MS17-010. Let’s fire up metasploit!

I search for “Eternal Blue” and choose 0.
Hitting options will allow us to see and configure settings for our attack. Set the RHOST to the vulnerable machine. Set the LHOST to your IP and hit run!
The exploit worked, we have a meterpreter shell!
Whoami?
Done! That was fun and easy.

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.