Εκμετάλλευση της αδυναμίας Eternal Blue με τη χρήση της Python και αρχείων Resource
Eternal Blue exploitation with the use of Python and Resource file
View/
Keywords
Metasploit ; Eternal blue ; Exploitation ; Resource files ; PythonAbstract
The aim of this thesis, is the automation of the exploit that became known in the year 2017, "Eternal Blue". In conjunction with Python programming language and Resource files, which are used by Metasploit to automate commands, a programming code has been created that, if a system is found vulnerable to the Eternal Blue exploit, it will automatically provide the attacker with several information and capabilities.
In this thesis Python was originally used to control and find vulnerable systems within a subnet or target specifically a computer as well as a way of starting the resource file that include the commands that will run inside the Metasploit framework. Those commands will cause the victim system to return a reverse shell to the attacker with privileged access as well as user password information.
The following diploma analyzes in detail all the above concepts as well as how to create and use the code that was used.