Bash script that automates all the steps to relay the SMB authentication request in order to obtain a Shell.
SMBRelay is an SMB Relay Attack Script, which automates all the steps to relay the authentication request to these systems in order to obtain a shell. Ideal for penetration testing.
SMBRelay creates and delivers the payload by leveraging the Nishang tool.
Installation
git clone https://github.com/m4lal0/smbrelay
cd smbrelay; chmod +x smbrelay.sh
./smbrelay.sh --install
When you run it, it will install the dependencies and configure the Terminator terminal for its correct use. The install script works with apt package managers (Debian).
How do I run the tool?
To run the tool it is only necessary to run it as follows (as root):
./smbrelay.sh
![smbrelay](https://cdn-0.reconshell.com/wp-content/uploads/2021/08/smbrelay-1024x523.png)
The tool will run the Terminator terminal with 4 splits.
Top left : Parameter configuration for the use of the SMB Relay attack.
Top right : Launch Responder on the network interface set in the configuration.
Bottom left : Launch of the Reverse Shell.
Bottom right : Launch of the Nishang script to the victim team.
![smbrelay3](https://cdn-0.reconshell.com/wp-content/uploads/2021/08/smbrelay3-1024x521.png)
NOTE
Run this tool only when you have permission to do so. This script is created for educational purposes or for professional pentesting audits at the enterprise level.
Leave a Reply