扫描
nmap --open 10.129.1.125查看smb服务
smbclient -L 10.129.1.125
#smbclient \\\\IP\\共享目录
smbclient \\\\10.129.1.125\\WorkShares
ls #dir也是可以的
-
TASK 1 What does the 3-letter acronym SMB stand for?
server message block -
TASK 2 What port does SMB use to operate at?
445
-TASK 3
What is the service name for port 445 that came up in our Nmap scan?microsoft-ds -
TASK 4 What is the 'flag' or 'switch' we can use with the SMB tool to 'list' the contents of the share?
-L -
TASK 5 How many shares are there on Dancing?
4 -
TASK 6 What is the name of the share we are able to access in the end with a blank password?
WorkShares -
TASK 7 What is the command we can use within the SMB shell to download the files we find?
get