Posts

Showing posts from February, 2018

MS17-010 Vulnerability - EternalBlue exploit using a binary payload and python script on Windows 8.1 and Windows 2012 R2 targets

Image
In this video we exploit the MS17-010 Vulnerability (EternalBlue) on Windows 8.1 and Windows 2012 R2 targets. We use the shellcode (binary payloads) that we previously generated, in addition to a python script and Metasploit Framework. Please check my previous post on generating the shellcode: Generating shellcode - using msfvenom to generate a binary payload We also need Worawit's eternalblue8_exploit.py python script, which can be downloaded from the following Github URL: https://gist.github.com/worawit/074a27e90a3686506fc586249934a30e Many of the commands used in this video are very similar with the ones used in my previous Windows 7 / Windows 2008 R2 exploitation video. So please check the post below for more explanations: MS17-010 Vulnerability - EternalBlue exploit using a binary payload and python script on Windows 7 and Windows 2008 R2 targets Still,  when using the EternalBlue exploit,  there is an important difference between Windows 7 / Windows 2008 R2 on one s