Description
This module exploits provides several SMB Relay abuse through different SAP services and functions. The attack is done through specially crafted requests including a UNC path which will be accessing by the SAP system while trying to process the request. In order to get the hashes the auxiliary/server/capture/smb module can be used.
Module options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
msf > use auxiliary/scanner/sap/sap_smb_relaymsf undefined(sap_smb_relay) > show actions ...actions...msf undefined(sap_smb_relay) > set ACTION < action-name >msf undefined(sap_smb_relay) > show options ...show and set options...msf undefined(sap_smb_relay) > runPrioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub