Dancing - HTB

Important notes⌗

• Target IP -> 10.129.225.81

---

This is a starting point machine, so it’s pretty simple.

Task 1 - What does the 3-letter acronym SMB stand for?⌗

Answer: Server Message Block

Task 2 - What port does SMB use to operate at?⌗

Answer: 445

Task 3 - What is the service name for port 445 that came up in our Nmap scan?⌗

Answer: microsoft-ds

Task 4 - What is the ‘flag’ or ‘switch’ that we can use with the smbclient utility to ’list’ the available shares on Dancing?⌗

Answer: -l

Task 5 - How many shares are there on Dancing?⌗

Answer: 4

Task 6 - What is the name of the share we are able to access in the end with a blank password?⌗

Answer: WorkShares

Task 7 - What is the command we can use within the SMB shell to download the files we find?⌗

Answer: get

---

Let’s log into the SMB with smbclient //<ip>/WorkShares.

Now let’s grab the flag with get flag.txt.