{"id":753,"date":"2020-03-16T08:57:50","date_gmt":"2020-03-16T07:57:50","guid":{"rendered":"https:\/\/blog.mhasin.eu\/?p=753"},"modified":"2020-03-16T09:07:52","modified_gmt":"2020-03-16T08:07:52","slug":"sken-siete-na-zistenie-chyby-v-smb-cve-2020-0796","status":"publish","type":"post","link":"https:\/\/blog.mhasin.eu\/?p=753","title":{"rendered":"Sken siete na zistenie chyby v SMB CVE-2020-0796"},"content":{"rendered":"\n<div class=\"wp-block-file\"><a href=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/SMBGhost.zip\">SMBGhost<\/a><a href=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/SMBGhost.zip\" class=\"wp-block-file__button\" download>Stiahnu\u0165<\/a><\/div>\n\n\n\n<p>Vytvorenie IP rozsahu ktor\u00fd budeme kontrolova\u0165:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>.\/ip-gen.sh 192.168.6.0\/24 > ip.list<\/code><\/pre>\n\n\n\n<p>Spustenie skenu:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>.\/scan.sh<\/code><\/pre>\n\n\n\n<p>Skript u nedostihnute\u013en\u00fdch klientov generuje tuto hl\u00e1\u0161ku:<\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"399\" height=\"64\" src=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/image-1.png\" alt=\"\" class=\"wp-image-756\" srcset=\"https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/image-1.png 399w, https:\/\/blog.mhasin.eu\/wp-content\/uploads\/2020\/03\/image-1-300x48.png 300w\" sizes=\"auto, (max-width: 399px) 100vw, 399px\" \/><\/figure><\/div>\n\n\n\n<p>Detekcia pozitivn\u00e9ho n\u00e1lezu:<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>192.168.6.123  SMB version 0x311 with context 0x2 was found which indicates SMBv3.1.1 is being used and SMB compression is enabled, therefore being vulnerable to CVE-2020-0796!<\/code><\/pre>\n\n\n\n<p>Povodny zdroj:<\/p>\n\n\n\n<p><a href=\"https:\/\/github.com\/ollypwn\/SMBGhost\">https:\/\/github.com\/ollypwn\/SMBGhost<\/a><\/p>\n<div class=\"pdf24Plugin-cp\"> \t<form name=\"pdf24Form0\" method=\"post\" action=\"https:\/\/doc2pdf.pdf24.org\/wordpress.php\" target=\"pdf24PopWin\" onsubmit=\"var pdf24Win = window.open('about:blank', 'pdf24PopWin', 'resizable=yes,scrollbars=yes,width=600,height=250,left='+(screen.width\/2-300)+',top='+(screen.height\/3-125)+''); pdf24Win.focus(); if(typeof pdf24OnCreatePDF === 'function'){void(pdf24OnCreatePDF(this,pdf24Win));}\"> \t\t<input type=\"hidden\" name=\"blogCharset\" value=\"Cw1x07UAAA==\" \/><input type=\"hidden\" name=\"blogPosts\" value=\"MwQA\" \/><input type=\"hidden\" name=\"blogUrl\" value=\"yygpKSi20tdPyslP18vNSCzOzNNLLQUA\" \/><input type=\"hidden\" name=\"blogName\" value=\"c\/LxdwcA\" \/><input type=\"hidden\" name=\"blogValueEncoding\" value=\"gzdeflate base64\" \/><input type=\"hidden\" name=\"postId_0\" value=\"Mzc1BgA=\" \/><input type=\"hidden\" name=\"postTitle_0\" value=\"C85OzVMozkwtSVXIS1SoyiwuSc3LTFVIzqhMqlQoUwj2dVJwDnPVNTIwMtA1MLc0AwA=\" \/><input type=\"hidden\" name=\"postLink_0\" value=\"yygpKSi20tdPyslP18vNSCzOzNNLLdW3L7A1NzUGAA==\" \/><input type=\"hidden\" name=\"postAuthor_0\" value=\"y00syfcwNAIA\" \/><input type=\"hidden\" name=\"postDateTime_0\" value=\"MzIwMtA1MNY1NFMwsLAyMLYyNQAA\" \/><input type=\"hidden\" name=\"postContent_0\" value=\"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\" \/> \t\t<a href=\"https:\/\/www.pdf24.org\" target=\"_blank\" title=\"www.pdf24.org\" rel=\"nofollow\"><img src=\"https:\/\/blog.mhasin.eu\/wp-content\/plugins\/pdf24-post-to-pdf\/img\/pdf_32x32.png\" alt=\"\" border=\"0\" height=\"32\" \/><\/a> \t\t<span class=\"pdf24Plugin-cp-space\">\u00a0\u00a0<\/span> \t\t<span class=\"pdf24Plugin-cp-text\">Send article as PDF<\/span> \t\t<span class=\"pdf24Plugin-cp-space\">\u00a0\u00a0<\/span> \t\t<input class=\"pdf24Plugin-cp-input\" style=\"margin: 0px;\" type=\"text\" name=\"sendEmailTo\" placeholder=\"Enter email address\" \/> \t\t<input class=\"pdf24Plugin-cp-submit\" style=\"margin: 0px;\" type=\"submit\" value=\"Send\" \/> \t<\/form> <\/div>","protected":false},"excerpt":{"rendered":"Vytvorenie IP rozsahu ktor\u00fd budeme kontrolova\u0165: Spustenie skenu: Skript u nedostihnute\u013en\u00fdch klientov generuje tuto hl\u00e1\u0161ku: Detekcia pozitivn\u00e9ho n\u00e1lezu: Povodny zdroj: https:\/\/github.com\/ollypwn\/SMBGhost \u00a0\u00a0 Send article as PDF \u00a0\u00a0\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"arc_restricted_post":false,"footnotes":""},"categories":[10],"tags":[],"class_list":["post-753","post","type-post","status-publish","format-standard","hentry","category-zabezpecenie"],"_links":{"self":[{"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/posts\/753","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=753"}],"version-history":[{"count":3,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/posts\/753\/revisions"}],"predecessor-version":[{"id":760,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=\/wp\/v2\/posts\/753\/revisions\/760"}],"wp:attachment":[{"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=753"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=753"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.mhasin.eu\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=753"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}