Description
This module supports running an HTTP server which validates credentials, and then attempts to execute a relay attack against an SMB server on the configured RHOSTS hosts.
If the relay succeeds, an SMB session to the target will be created. This can be used by any modules that support SMB sessions.
Supports SMBv2, SMBv3, and captures NTLMv1 as well as NTLMv2 hashes.
Module options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
msf > use auxiliary/server/relay/http_to_smbmsf undefined(http_to_smb) > show actions ...actions...msf undefined(http_to_smb) > set ACTION < action-name >msf undefined(http_to_smb) > show options ...show and set options...msf undefined(http_to_smb) > runPrioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub