CVE-2017-0143

This repository contains a functional exploit for CVE-2017-0143 (EternalBlue), targeting MS17-010 vulnerability in Windows SMBv1. It includes scripts to check for vulnerability and execute payloads, leveraging Impacket for SMB communication.

This repository contains a scanner for detecting the EternalBlue vulnerability (CVE-2017-0143) in Windows 7 systems. It sends SMB packets to check for vulnerability but does not include exploit code for remote code execution.

This repository contains a bash script that uses nmap and masscan to detect CVE-2017-0143 (MS17-010) and CVE-2017-7494 (SAMBA) vulnerabilities in a network. It automates the process of scanning for vulnerable hosts by leveraging existing nmap scripts.

This repository contains a detailed technical writeup of exploiting CVE-2017-0143 (EternalBlue) on a Windows 7 VM, including reconnaissance, vulnerability detection, exploitation using Metasploit, and post-exploitation steps. It provides a comprehensive walkthrough with screenshots and remediation recommendations.

This repository provides a detailed step-by-step guide on exploiting CVE-2017-0143 (EternalBlue) using Metasploit in a lab environment. It includes setup instructions, vulnerability scanning, and post-exploitation steps, but does not contain actual exploit code.

This repository provides a report on EternalBlue (CVE-2017-0143), an exploit targeting Microsoft's SMBv1 protocol. It includes references to external resources but lacks functional exploit code or technical analysis.

This repository contains multiple scripts for detecting and enumerating SMB vulnerabilities, including CVE-2017-0143 (EternalBlue), but does not include functional exploit code for achieving RCE. It focuses on scanning, brute-forcing, and information gathering.

This repository contains a functional Python3 exploit for CVE-2017-0143 (MS17-010), targeting the EternalBlue vulnerability in Windows SMBv1. The exploit leverages memory corruption to achieve remote code execution by manipulating session security contexts.

This Metasploit module detects the presence of the MS17-010 vulnerability (CVE-2017-0143) by probing the SMB service for a specific response indicating unpatched systems. It also checks for existing DoublePulsar infections but does not include exploit code for remote code execution.

This repository is a documentation hub for various Windows kernel exploits, including CVE-2017-0143 (EternalBlue). It contains structured README files, issue templates, and a Python script for generating documentation. No functional exploit code is present.

This repository contains detailed security notes and command snippets for red-teaming activities, including enumeration, brute-force attacks, and tool usage. It does not contain exploit code for CVE-2017-0143 but provides general offensive security techniques.

This repository contains a functional Python3 exploit for CVE-2017-0143 (MS17-010), targeting the SMBv1 vulnerability in Windows systems. The exploit leverages memory corruption to achieve remote code execution by manipulating session security contexts.

This Metasploit module exploits SMB vulnerabilities in MS17-010 (CVE-2017-0147) to achieve remote code execution on Windows systems. It leverages a write-what-where primitive to overwrite session information and execute payloads via psexec, PowerShell, or native upload methods.

This is a Python-based exploit for CVE-2017-0148 (MS17-010), targeting a buffer overflow in the SMBv1 protocol. It leverages a crafted SMB packet to achieve remote code execution on vulnerable Windows systems.

This Metasploit module scans for the MS17-010 vulnerability (CVE-2017-0147) by checking the SMB response status for FID 0. It does not exploit the vulnerability but detects its presence.

This Metasploit module exploits MS17-010 vulnerabilities (EternalRomance/EternalSynergy/EternalChampion) to achieve remote code execution on Windows systems via SMB. It leverages a write-what-where primitive to overwrite session information and execute payloads via psexec.

This Metasploit module exploits MS17-010 vulnerabilities (EternalRomance, EternalSynergy, EternalChampion) to achieve remote command execution via SMB. It leverages a write-what-where primitive to overwrite session information and execute commands as an Administrator.

This Metasploit module exploits the DOUBLEPULSAR implant, which leverages the ETERNALBLUE vulnerability (CVE-2017-0143) to execute payloads or neutralize the implant on vulnerable Windows systems via SMB.