Q: What the fuck is that?
A: The Blue Screen of Death (BSOD), officially a STOP Error, also known as Deadscreen, Blue Screen Error, Bluescreen, or bug check, is the error screen displayed by the Microsoft Windows family of operating systems upon encountering a critical error, of a non-recoverable nature, that causes the system to crash. The term is named after the color of the screen generated by the error.
Here are some BSOD that I got from Internet
BSOD on Windows 8
BSOD on Previous Windows
- You should be in one LAN with your target.
- You have to know what is your target's IP.
- Your target's firewall must be in inactive state.
- Your target share his/her folder on LAN.
- You have to know what folder which their shared.
- You have a working brain.
- Network mapper (You can use Nmap for information gathering session)
- Metasploit (which can be found here)
You can find out what is your ip address by following command
Which provided this output
The red blocked numbers are your IP address.
NOTE: wlan0 is common interface for wireless network on linux. Adjust your own network interface. If you use wired network, it should be eth0, etc.
In this tutorial, I'm using VMWare to tested if this method is work or not. Thus will not make harm to anyone.
So, my IP address is 192.168.222.1
2. Find out your target's IP Address
In this section, you may use any tools which provide you network assessment ability. In this case, I'm using Nmap which more faster (since it could be ran from console), and more reliable.
Back to requirement, we need to know whether our target is behind firewall or not, we also need to know whether our target share his/her folder or not. Thus will make a statement that:
Windows users who are not using firewall, are able to be ping-ed by someone, and they are opening port on 445 (smb service)
So let's check who is/are opening his/her 445 port by following command
Still remember my IP address? Yes, thus I type 192.168.222.1 on my Nmap command. So, what about -255? It is max range of IP address. So in this case, I want to scan a network from 192.168.222.1 to 192.168.1.255. Yes, it's a whole IP address on that LAN.
And what about -p 445? It's a port. Yes, I'm only scan IPs with opened 445 port in my LAN. Thus will make faster result since I will skip any IP with closed 445 port.
Try to adjust your IP address. Example: if your IP address is 10.20.0.33, then you type following command
Try to remove tail number, and replace with 1. So you are able to scan IP address above you (10.20.0.1 to 10.20.0.32).
So after I scan my network, here are the outputs
So, we have 192.168.222.128 with opened 445 port.
3. Find out, is he/she share his/her folder
You may wonder, why our target must share his/her folder so we can make his/her PC / Laptop get BSOD? Well, in this case, I will use DOS method. Which could make a system going down by sending malicious code from request header to smb service. So how to know whether our target share his/her folder? Well, you can use this simple command.
In this case, my target's IP is 192.168.222.128. So my command look like this
And it will provide an output like this
We need share name in this output. We can use one of them, in this case I will use Secret Stuff.
4. Launch BSOD Attack
Start from metasploit console, by following command
And setup your options
RHOST is your target's IP. SMBSHARE is folder which his/her share. All done, and Let's Kicking Ass!
And... ... ...