Post

HackTheBox_Blue | w/ Metasploit

Posted Updated
By Muqaram Majid
1 min read

HTB - Blue

Overview

Nmap Scan

Blue is an easy-tier machine on Hack The Box that allows users to practice exploiting the EternalBlue vulnerability, a well-known flaw in SMB services on older Windows systems.

Enumeration

Nmap Scan Results

To start the enumeration, I performed an Nmap scan to discover open ports and services running on the target machine.

Nmap Scan Results

Nmap Scan

Vulnerabilities

Port 445/tcp

The SMB service was identified as SMB 2.1.0 running on Windows 7, which is vulnerable to the EternalBlue exploit.

EternalBlue Exploit Details

Exploitation

Using the SMB 2.1.0 vulnerability (EternalBlue) that was identified earlier:

Exploitation Step 1

Exploitation Step 2

We successfully gained access to the system. Now it’s time to capture the flags.

User Flag

Exploitation Step 3

Root flag

Root Flag

Pwned

hackthebox, CTF, writeups
ctf hackthebox writeup windows easy
This post is licensed under CC BY 4.0 by the author.

Comments powered by Disqus.