From 122997de5f006541b8de5d6e21cb9e93af679842 Mon Sep 17 00:00:00 2001
From: Juri Dispan <juri.dispan@posteo.net>
Date: Sat, 10 Aug 2024 10:11:43 +0200
Subject: [PATCH] nxc-smb: add page (#13417)

Co-authored-by: spageektti <git@spageektti.cc>
---
 pages/common/nxc-smb.md | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)
 create mode 100644 pages/common/nxc-smb.md

diff --git a/pages/common/nxc-smb.md b/pages/common/nxc-smb.md
new file mode 100644
index 0000000000..871e40e3e4
--- /dev/null
+++ b/pages/common/nxc-smb.md
@@ -0,0 +1,28 @@
+# nxc smb
+
+> Pentest and exploit SMB servers.
+> More information: <https://www.netexec.wiki/smb-protocol>.
+
+- Search for valid domain credentials by trying out every combination in the specified lists of [u]sernames and [p]asswords:
+
+`nxc smb {{192.168.178.2}} -u {{path/to/usernames.txt}} -p {{path/to/passwords.txt}}`
+
+- Search for valid credentials for local accounts instead of domain accounts:
+
+`nxc smb {{192.168.178.2}} -u {{path/to/usernames.txt}} -p {{path/to/passwords.txt}} --local-auth`
+
+- Enumerate SMB shares and the specified users' access rights to them on the target hosts:
+
+`nxc smb {{192.168.178.0/24}} -u {{username}} -p {{password}} --shares`
+
+- Enumerate network interfaces on the target hosts, performing authentication via pass-the-hash:
+
+`nxc smb {{192.168.178.30-45}} -u {{username}} -H {{NTLM_hash}} --interfaces`
+
+- Scan the target hosts for common vulnerabilities:
+
+`nxc smb {{path/to/target_list.txt}} -u '' -p '' -M zerologon -M petitpotam`
+
+- Attempt to execute a command on the target hosts:
+
+`nxc smb {{192.168.178.2}} -u {{username}} -p {{password}} -x {{command}}`