Showing posts from September, 2018

MS17-010 Vulnerability - New EternalBlue SMB module for Metasploit - Exploiting Windows 8.1

In its July 2018 update, Metasploit has released a new EternalBlue module named: ms17_010_eternalblue_win8    The short description for this module reads: MS17-010 EternalBlue SMB remote Windows Kernel Pool Corruption for Win8+ The July Metasploit update releases can be found on this link. Of course, Metasploit already had an EternalBlue module which was called ms17_010_eternalblue , but this older module was compatible only with Windows 7 and Windows 2008 R2 (x64). On the other hand, the new  ms17_010_eternalblue_win8 is listed as being compatible with Windows 8.1, Windows 10 (selected builds) and Windows 2012 R2 (x64). Before watching my new video on exploiting Windows 8.1 with the new  ms17_010_eternalblue_win8 module, you might find useful reviewing my previous posts related to the EternalBlue exploit, which I list below: 1.   MS17-010 Vulnerability - Using EternalBlue exploit module in Metasploit 2. MS17-010 Vulnerability - EternalBlue exploit using a binary payload an