MrBlue PwntillDawn
IP Address = 10.150.150.219
Difficulty = Easy
Nmap Scan:
From the scan we can see its a windows box. Lets begin enumerating the web server
It just shows a picture
Checking source code
We can see some words in the alt variable in the tag and its giving reference to something
Lets check google on what MS17-010 means. And we see its an exploit which is a remote code execution cause from buffer overflow and it has its metasploit module
On metasploit I searched for eternal blue. And we will see about 5 options so lets choose the first one then set the options
Running the exploit pops a shell as admin
Flags:
Flag34: c2e9e102e55d5697ed2f9a7ea63708c1cc411b79
Write-ups have been authorized for this machine by the PwnTillDawn Crew! Here’s the link to access it Wizlynx and PwntillDawn
And we’re done