The original post: /r/cybersecurity by /u/ecry_ on 2024-11-06 16:27:45.

We have been given a task in my cybersecurity class. As shown by the nmap scan we have info about the OS, we do know it is a VM and we have the ipv6 and 4 address. (Also the gateway) So far my closest guess has been a SMBv3 vulnerability (SMBghost) as I think it is running SMB 3.1.1 on port 455. I have tried exploiting it through metasploit on kali but the modules on there aren’t working. The tutor told us the port 135 isn’t the one we have to exploit so it is either one between 139 and 455 but I have no other clues on how to proceed. The other CVEs I found about the 21h2 version of win10 don’t seem exploitable or I just don’t have the skill to execute them yet. You guys have any ideas?