Windows Machine -

Scan Report Results →

Open Ports are

139/tcp → netbios-ssn | Microsoft Windows netbios-ssn version

445 → Microsoft-ds WindowsXp Microsoft-ds

Which are basically the same as Samba so for file sharing .

NETBIOS name = LEGACY

OS: Windows XP (Windows 2000 LAN Manager)

OS CPU =

Also we found out that message signing : disabled which is super dangerous also sometimes we can have message signing : enabled but not required which is also dangerous .

We can get information about the smb version by using a smb_version auxilary module in metsploit

Its Windows XP SP3

which we can exploit using

windows/smb/ms08_067_netapi which pops the shell for us