SMB - 445
┌──(anonmak9㉿anonmak9)-[~/Desktop/hospital]
└─$ smbclient -N -L //10.10.11.241
session setup failed: NT_STATUS_ACCESS_DENIED
┌──(anonmak9㉿anonmak9)-[~/Desktop/hospital]
└─$ smbclient -U "guest" -L //10.10.11.241
Password for [WORKGROUP\guest]:
session setup failed: NT_STATUS_ACCOUNT_DISABLEDCredentialed - drwilliams
┌──(anonmak9㉿anonmak9)-[~/Desktop/hospital]
└─$ netexec smb 10.10.11.241 -u drwilliams -p 'qwe123!@#'
SMB 10.10.11.241 445 DC [*] Windows 10 / Server 2019 Build 17763 x64 (name:DC) (domain:hospital.htb) (signing:True) (SMBv1:False)
SMB 10.10.11.241 445 DC [+] hospital.htb\drwilliams:qwe123!@#
┌──(anonmak9㉿anonmak9)-[~/Desktop/hospital]
└─$ netexec smb 10.10.11.241 -u drwilliams -p 'qwe123!@#' --shares
SMB 10.10.11.241 445 DC [*] Windows 10 / Server 2019 Build 17763 x64 (name:DC) (domain:hospital.htb) (signing:True) (SMBv1:False)
SMB 10.10.11.241 445 DC [+] hospital.htb\drwilliams:qwe123!@#
SMB 10.10.11.241 445 DC [*] Enumerated shares
SMB 10.10.11.241 445 DC Share Permissions Remark
SMB 10.10.11.241 445 DC ----- ----------- ------
SMB 10.10.11.241 445 DC ADMIN$ Remote Admin
SMB 10.10.11.241 445 DC C$ Default share
SMB 10.10.11.241 445 DC IPC$ READ Remote IPC
SMB 10.10.11.241 445 DC NETLOGON READ Logon server share
SMB 10.10.11.241 445 DC SYSVOL READ Logon server share Credentialed - drbrown
Last updated