Quick Nmap scan to identify hosts that vulnerable to EternalBlue (MS17-010)

By using Nmap script to detect if a Microsoft SMBv1 server is vulnerable to EternalBlue (MS17-010) remote code execution vulnerability.

(Kali Linux is used for below demo)

  1. Download the script “smb-vuln-ms17-010.nse” from nmap.org

    wget https://svn.nmap.org/nmap/scripts/smb-vuln-ms17-010.nse -O /usr/share/nmap/scripts/smb-vuln-ms17-010.nse

    20170628-23

  2. Conduct the scan again target IP or network
    {Please DO NOT conduct any unauthorized network scanning!}

    nmap -p445 -v –script smb-vuln-ms17-010 192.168.1.104

    20170628-24
    (The above result shows that the scanned host is NOT vulnerable to EternalBlue)

    Thanks for reading!

    Best regards
    Henry

Advertisements

Author: Henry HON

Cyber Security Professional

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s