How to hack Windows 10 WITHOUT PAYLOAD using Kali Linux 2018.1

!!! ONLY FOR EDUCATIONAL PURPOSES !!!

How to hack windows 10 without user's interaction
Description:
This module will exploit SMB with vulnerabilities in MS17-010 to
achieve a write-what-where primitive. This will then be used to
overwrite the connection session information with as an
Administrator session. From there, the normal psexec payload code
execution is done. Exploits a type confusion between Transaction and
WriteAndX requests and a race condition in Transaction requests, as
seen in the EternalRomance, EternalChampion, and EternalSynergy
exploits. This exploit chain is more reliable than the EternalBlue
exploit, but requires a named pipe.
To be able to use exploit/windows/smb/ms17_010_psexec: You can OPTIONALLY use a valid username/password to bypass most of these requirements. The firewall must allow SMB traffic. The target must use SMBv1. The target must be missing the MS17-010 patch. The target must allow anonymous IPC$ and a Named Pipe.

You can check all of these with the SMB MS17-010 and Pipe Auditor auxiliary scanner modules.

commands:
msfconsole
use exploit/windows/smb/ms17_010_psexec
set rhost targetip
set SMBUser ...
set SMBPass ...
exploit
...
THANK YOU FOR WATCHING
SUBSCRIBE
SHARE
LIKE
FOLLOW US ON INSTAGRAM
https://www.instagram.com/kali_linux_...
FOLLOW US ON TWITTER
https://twitter.com/KALILINUXTRICKS