Quick Nmap scan to identify hosts that vulnerable to EternalBlue (MS17-010)

By using Nmap script to detect if a Microsoft SMBv1 server is vulnerable to EternalBlue (MS17-010) remote code execution vulnerability.

(Kali Linux is used for below demo)

  1. Download the script “smb-vuln-ms17-010.nse” from nmap.org

    wget https://svn.nmap.org/nmap/scripts/smb-vuln-ms17-010.nse -O /usr/share/nmap/scripts/smb-vuln-ms17-010.nse

    20170628-23

  2. Conduct the scan again target IP or network
    {Please DO NOT conduct any unauthorized network scanning!}

    nmap -p445 -v –script smb-vuln-ms17-010 192.168.1.104

    20170628-24
    (The above result shows that the scanned host is NOT vulnerable to EternalBlue)

    Thanks for reading!

    Best regards
    Henry

Advertisements