Exploit Remote Windows PC with Eternalblue & Doublepulsar Exploit in Metasploit

Through this article, we are sharing recent zero-day exploit which requires the Metasploit framework to shoot any other windows based system. This exploit is a combination of two tools “Eternal Blue” which is useful as a backdoor in windows and “Doublepulsar” which is used for injecting DLL file with the help of payload. So we will manually add this exploit in Metasploit framework and step up for attacking window server 2008.

Attacker: Kali Linux

Target: Windows 7 and Windows Server 2008

Let’s Start!

Open the terminal in Kali Linux and type the following command to download this exploit from git hub.

Once the required exploit will get downloaded then open the folder and copy Eternal Blue- Doublepulsar .rb ruby file so that we can add this exploit inside Metasploit.

Now past the copied ruby file inside given path Usr/share/metasploit Framework /module/exploits/windows/smb which will add this exploit inside Metasploit framework.

Then load Metasploit framework to start and type following for testing zero-day exploit

This module exploits the vulnerability of SMBv1 and SMBv2 protocols through eternalblue. After that doublepulsar is used to inject remotely a malicious DLL.

Hence from the screenshot, you can observer only we need to set target’s architecture and IP before launching exploit and then when all information is set then launch your attack which will give you meterpreter session successfully as I have owned.

Author: Aarti Singh is a Researcher and Technical Writer at Hacking Articles an Information Security Consultant Social Media Lover and Gadgets. Contact here

5 Comments Exploit Remote Windows PC with Eternalblue & Doublepulsar Exploit in Metasploit

Leave a Reply

Your email address will not be published. Required fields are marked *