Exploiting MS17-010 without metasploit - BLUE Hack The Box without Metasploit
Reconnaissance
First thing first, we run a quick initial nmap scan to see which ports are open and which services are running on those ports.
nmap -sC -sV -O -oA initial 10.10.10.40
-sC: run default nmap scripts
-sV: detect service version
-O: detect OS
-oA: output all formats and store...