< Go to the original

HackTheBox Dancing room

HTB Starting Point: Dancing

Sagarkadyan

Sagarkadyan

~1 min read · January 28, 2026 (Updated: January 28, 2026) · Free: Yes

HackTheBox Dancing room

HTB Starting Point: Dancing

Overview

Service: SMB
Port: 445
Service Name: microsoft-ds

This room demonstrates how exposed SMB shares can leak sensitive data when authentication is weak.

Enumeration

SMB Share Discover

smbclient -L //target_ip

Results

Total shares discovered: 4
Accessible share: workshare (no password required)

Exploitation

Accessing the open SMB share:

smbclient //target_ip/workshare

Downloading files from the share:

get <filename>

Alternative Access Method

Use a graphical file manager
Navigate to Network
Browse SMB shares directly

Lessons Learned

SMB shares often expose internal files
Blank or weak authentication is common
Internal services should not blindly trust the network

#hacking #hackthebox #problem-solving