Back to Reports

Executive Summary

This report contains the results of a security audit performed by Metasploit Express from Rapid7 LLC. It contains confidential information about the state of your network. Access to this information by unauthorized personnel may allow them to compromise your network.

During this test, 3 hosts with a total of 10 exposed services were discovered. Of these, 1 were compromised and 6 passwords were obtained. The most common module used to compromise systems among 75 unique modules was exploit/windows/smb/ms08_067_netapi (1 sessions). From the compromised systems, 4 data files were obtained, including 1 screenshot.

The purpose of this report is to list, at a high level, findings for the penetration test.

Major Findings

This section lists high-priority problems including host compromises and discovered passwords.

Compromised hosts by address

Compromised System	Attack Module	Session Information	Vulnerability References
192.168.56.101	exploit/windows/smb/ms08_067_netapi		CVE-2008-4250, OSVDB-49243, MSB-MS08-067, Rapid7 Vulnerability DB

Authentication Tokens

Address	Type	User	Password or Hash	Additional Information
192.168.56.101	smb	admin	e52caxxxxxxxxxxxxxxxxxxxxxxxa6cb6d:8846f7xxxxxxxxxxxxxxxxxxxxxxxxxxxx0b7586c
192.168.56.101	smb	Administrator	e52caxxxxxxxxxxxxxxxxxxxxxxxa6cb6d:8846f7xxxxxxxxxxxxxxxxxxxxxxxxxxxx0b7586c
192.168.56.101	smb	Guest	e52caxxxxxxxxxxxxxxxxxxxxxxxa6cb6d:8846f7xxxxxxxxxxxxxxxxxxxxxxxxxxxx0b7586c
192.168.56.101	smb	HelpAssistant	e52caxxxxxxxxxxxxxxxxxxxxxxxa6cb6d:8846f7xxxxxxxxxxxxxxxxxxxxxxxxxxxx0b7586c
192.168.56.101	smb	SUPPORT_388945a0	e52caxxxxxxxxxxxxxxxxxxxxxxxa6cb6d:8846f7xxxxxxxxxxxxxxxxxxxxxxxxxxxx0b7586c
192.168.56.101	smb	test	e52caxxxxxxxxxxxxxxxxxxxxxxxa6cb6d:8846f7xxxxxxxxxxxxxxxxxxxxxxxxxxxx0b7586c

Hosts Summary

Discovered hosts

Address	Hostname	OS Name	Services	Vulns	Files	Notes	Compromised?
192.168.56.101	asdf-b9ca10e6b9	Microsoft Windows XP	5	1	4	10	yes
192.168.56.1		Linux (Ubuntu)	2			2	no
192.168.56.102		Linux (Ubuntu)	3			2	no