Skip to content

Samba Suite

It’s used to enumerate info. It might be used in a Null session attack.

Installation

Download it from: https://www.samba.org/

Basic commands

  1. Enumerate File Server services: 
nmblookup -A $ip
  1. Also with the smbclient we can enumerate the shares provides by a host: 
smbclient -L //$ip -N

# -L  Look at what services are available on a target
# $ip Prepend the two slahes
# -N  Force the tool not to ask for a password
  1. Connect:
smbclient \\$ip\sharedfolder -N

Be careful, sometimes the shell removes the slashes and you need to escape them.

  1. Once connected you can browse with the smb command line. To see allowed commands: help
  2. When you know the path of a file and you want to retrieve it:
    • from kali: 
      smbget smb://$ip/SharedFolder/flag_1.txt
    • from smb command line: 
      get flag_1.txt
!ls
!cat flag.txt
Last update: 2024-10-22
Created: February 2, 2023 19:36:50