SMB
Nmap discovered a Windows Directory service on the target port 139 and 445
┌──(kali㉿kali)-[~/archive/htb/labs/love]
└─$ nmap --script smb-enum-shares -sV -p139,445 $IP
starting nmap 7.94 ( https://nmap.org ) at 2023-09-16 13:59 CEST
Nmap scan report for love (10.10.10.239)
Host is up (0.025s latency).
PORT STATE SERVICE VERSION
139/tcp open netbios-ssn Microsoft Windows netbios-ssn
445/tcp open microsoft-ds microsoft windows 7 - 10 microsoft-ds (workgroup: WORKGROUP)
service info: OS: Windows; CPE: cpe:/o:microsoft:windows
host script results:
| smb-enum-shares:
| note: ERROR: Enumerating shares failed, guessing at common ones (NT_STATUS_ACCESS_DENIED)
| account_used: <blank>
| \\10.10.10.239\admin$:
| warning: Couldn't get details for share: NT_STATUS_ACCESS_DENIED
| anonymous access: <none>
| \\10.10.10.239\c$:
| warning: Couldn't get details for share: NT_STATUS_ACCESS_DENIED
| anonymous access: <none>
| \\10.10.10.239\ipc$:
| warning: Couldn't get details for share: NT_STATUS_ACCESS_DENIED
|_ anonymous access: READ
service detection performed. please report any incorrect results at https://nmap.org/submit/ .
nmap done: 1 IP address (1 host up) scanned in 161.12 secondsAttempting to map the target SMB shares with an additional Nmap scan fails due to lack of privileges
Null Session
┌──(kali㉿kali)-[~/archive/htb/labs/love]
└─$ smbclient -L //$IP/
Password for [WORKGROUP\kali]:
session setup failed: NT_STATUS_ACCESS_DENIEDAs expected, the target SMB service does not allow anonymous access A valid system credential would be required to proceed forward