Samba

• A tool that can enumerate and interact with SMB shares is smbclient

• nmap -p 445 --script=smb-enum-shares.nse,smb-enum-users.nse MACHINE_IP

To list shares

• smbclient -N -L \\ip

To connect to the share

• As guest: smbclient \\ip\share_name

• As a user: smbclient -U user \\ip\share_name

You can get files from the server with get command (Ex: get file.txt)

To recursively get all files and folders from the server:

1. recurse on

2. prompt off

3. mget *