yzbtdiy

MS17-010 漏洞利用

Jan 7, 2025104

AI-generated summary

The document describes the use of the Metasploit Framework for exploiting the MS17-010 vulnerability. It outlines the steps to access the msfconsole, search for relevant modules, and use the `smb_ms17_010` scanner for scanning. It then details the use of the `ms17_010_eternalblue` exploit to gain a shell. Common commands for navigating local and remote directories, uploading files, and invoking a remote shell are provided. Additionally, it mentions using the `net` command in the shell to create users and add RDP access permissions.

使用 Metasploit Framework#

执行msfconsole命令，进入 msf 终端
搜索 ms17-010 相关模块
使用auxiliary/scanner/smb/smb_ms17_010模块进行扫描
使用exploit/windows/smb/ms17_010_eternalblue模块进行漏洞利用
漏洞利用成功的到 shell, 使用 help 命令可以查看支持的命令

常用命令:
lcd 切换本地目录
lls 浏览本地文件

cd 切换远端目录
ls 浏览远端文件

upload 本地文件远端位置 上传文件

shell 调用远端 shell

cmd 里可以使用net命令创建用户，添加 rdp 访问权限

Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.

Blockchain ID
#70558-13
Owner
0xfc7d58b6201eb6f0ff9cdb22c7fb51ec8b009233
Transaction Hash
Creation 0xaca52b04...ac26951001 Last Update 0xaca52b04...ac26951001
IPFS Address
ipfs://QmXCaKsVQpy4qbSj5o6L4sTqvhmCPLQDNsR1vwKpU4qkmj