{"id":586,"date":"2026-04-30T03:22:50","date_gmt":"2026-04-30T03:22:50","guid":{"rendered":"https:\/\/sites.wp.odu.edu\/zsumu001\/?p=586"},"modified":"2026-04-30T04:17:14","modified_gmt":"2026-04-30T04:17:14","slug":"windows-pentest","status":"publish","type":"post","link":"https:\/\/sites.wp.odu.edu\/zsumu001\/2026\/04\/30\/windows-pentest\/","title":{"rendered":"Windows Pentest"},"content":{"rendered":"\n<p>What it is:<br>A hands-on penetration testing lab focused on identifying and exploiting Windows vulnerabilities using industry tools, followed by post-exploitation and privilege escalation techniques in a controlled virtual environment.<\/p>\n\n\n\n<p>What I did:<br>Performed network reconnaissance using Nmap to identify open ports and SMB vulnerabilities. Exploited the MS08-067 vulnerability on Windows XP using Metasploit Framework and established a Meterpreter session. Tested EternalBlue (MS17-010) against modern systems, generated and delivered custom payloads to a Windows 7 machine, and conducted post-exploitation tasks including system enumeration, file manipulation, privilege escalation, and creating administrative backdoor accounts.<\/p>\n\n\n\n<p>What I learned:<br>Learned how attackers identify and exploit vulnerabilities in outdated systems and why legacy systems pose significant risks. Gained experience in the full attack lifecycle: reconnaissance, exploitation, persistence, and post-exploitation. Also learned why modern systems (e.g., Windows Server 2022) are more resistant to older exploits due to updated security controls and patches.<br><\/p>\n\n\n<a href=\"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-content\/uploads\/sites\/31974\/2026\/04\/CYSE301-ASSIGNMENT-4.pdf\" class=\"pdfemb-viewer\" style=\"\" data-width=\"max\" data-height=\"max\"  data-toolbar=\"bottom\" data-toolbar-fixed=\"off\">CYSE301-ASSIGNMENT-4<br\/><\/a>\n<p class=\"wp-block-pdfemb-pdf-embedder-viewer\"><\/p>\n","protected":false},"excerpt":{"rendered":"<p>What it is:A hands-on penetration testing lab focused on identifying and exploiting Windows vulnerabilities using industry tools, followed by post-exploitation and privilege escalation techniques in a controlled virtual environment. What <a class=\"more-link\" href=\"https:\/\/sites.wp.odu.edu\/zsumu001\/2026\/04\/30\/windows-pentest\/\">Continue Reading &rarr;<\/a><\/p>\n","protected":false},"author":25872,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","wds_primary_category":0},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/posts\/586"}],"collection":[{"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/users\/25872"}],"replies":[{"embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/comments?post=586"}],"version-history":[{"count":5,"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/posts\/586\/revisions"}],"predecessor-version":[{"id":643,"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/posts\/586\/revisions\/643"}],"wp:attachment":[{"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/media?parent=586"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/categories?post=586"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sites.wp.odu.edu\/zsumu001\/wp-json\/wp\/v2\/tags?post=586"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}