Deploy & hack into a Windows machine, leveraging common misconfigurations issues.

This challenge was an excellent deep dive into Windows exploitation, specifically targeting the MS17-010 (EternalBlue) vulnerability. It reinforced the critical importance of patch management and secure configurations in an enterprise environment.

Core competencies practiced:

Reconnaissance: Leveraging Nmap to identify vulnerable SMB services.

Exploitation: Utilizing the Metasploit Framework to gain initial access.

Post-Exploitation: Navigating the Windows file system and dumping SAM hashes.