Try Hack Me- Blue Walkthrough
📰 Medium · Cybersecurity
Learn to hack the Blue machine on Try Hack Me using EternalBlue exploit and gain SYSTEM-level access
Action Steps
- Run a port scan on the Blue machine to identify open ports and services
- Perform SMB enumeration to gather information about the SMB service
- Exploit the MS17-010 vulnerability using EternalBlue to gain a Meterpreter shell
- Use the Meterpreter shell to gain SYSTEM-level access and dump credentials
- Analyze the business impact of an unpatched SMBv1 service and the potential risks of a domain-wide compromise
Who Needs to Know This
This walkthrough is beneficial for cybersecurity teams and penetration testers who want to practice exploiting vulnerabilities and gaining access to systems. It can help them understand the risks associated with unpatched SMBv1 services and improve their skills in vulnerability assessment and exploitation.
Key Insight
💡 Unpatched SMBv1 services can be exploited using EternalBlue, allowing unauthenticated remote code execution and SYSTEM-level access
Share This
💡 Exploit EternalBlue on Try Hack Me's Blue machine and gain SYSTEM-level access! 🚨
Key Takeaways
Learn to hack the Blue machine on Try Hack Me using EternalBlue exploit and gain SYSTEM-level access
Full Article
Title: Try Hack Me- Blue Walkthrough
URL Source: https://pulse-einher.medium.com/try-hack-me-blue-walkthrough-2d2ac6666de7?source=rss------cybersecurity-5
Published Time: 2026-04-16T18:02:16Z
Markdown Content:
# Try Hack Me- Blue Walkthrough. Hello, stranger — let’s begin. | by PulseEinher | Apr, 2026 | Medium
[Sitemap](https://pulse-einher.medium.com/sitemap/sitemap.xml)
[Open in app](https://play.google.com/store/apps/details?id=com.medium.reader&referrer=utm_source%3DmobileNavBar&source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
[](https://medium.com/?source=post_page---top_nav_layout_nav-----------------------------------------)
Get app
[Write](https://medium.com/m/signin?operation=register&redirect=https%3A%2F%2Fmedium.com%2Fnew-story&source=---top_nav_layout_nav-----------------------new_post_topnav------------------)
[Search](https://medium.com/search?source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
# Try Hack Me- Blue Walkthrough
[](https://pulse-einher.medium.com/?source=post_page---byline--2d2ac6666de7---------------------------------------)
[PulseEinher](https://pulse-einher.medium.com/?source=post_page---byline--2d2ac6666de7---------------------------------------)
Follow
10 min read
·
1 hour ago
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fvote%2Fp%2F2d2ac6666de7&operation=register&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&user=PulseEinher&userId=3638310b8c49&source=---header_actions--2d2ac6666de7---------------------clap_footer------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fbookmark%2Fp%2F2d2ac6666de7&operation=register&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&source=---header_actions--2d2ac6666de7---------------------bookmark_footer------------------)
[Listen](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2Fplans%3Fdimension%3Dpost_audio_button%26postId%3D2d2ac6666de7&operation=register&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&source=---header_actions--2d2ac6666de7---------------------post_audio_button------------------)
Share
**Hello, stranger — let’s begin.**
Ready to go??
Today’s problem is: [https://tryhackme.com/room/blue](https://tryhackme.com/room/blue)
**Challenge Overview:
Machine:**Blue (THM)
**Path:**Port Scan → SMB Enumeration → MS17–010 (EternalBlue) → Meterpreter Shell → SYSTEM Access → Credential Dumping
**Key Takeaway:**An unpatched SMBv1 service vulnerable to EternalBlue allowed unauthenticated remote code execution, directly granting SYSTEM-level access without requiring valid credentials.
**Business Impact:** In a real-world enterprise network, exposure of SMB services with known critical vulnerabilities could allow attackers to gain immediate SYSTEM-level access, dump credentials, and move laterally across the network — leading to domain-wide compromise, unauthorized access to sensitive data, and potential ransomware-style full infrastructure takeover.
The following entry was added to the `/etc/hosts` file to simplify hostname-b
URL Source: https://pulse-einher.medium.com/try-hack-me-blue-walkthrough-2d2ac6666de7?source=rss------cybersecurity-5
Published Time: 2026-04-16T18:02:16Z
Markdown Content:
# Try Hack Me- Blue Walkthrough. Hello, stranger — let’s begin. | by PulseEinher | Apr, 2026 | Medium
[Sitemap](https://pulse-einher.medium.com/sitemap/sitemap.xml)
[Open in app](https://play.google.com/store/apps/details?id=com.medium.reader&referrer=utm_source%3DmobileNavBar&source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
[](https://medium.com/?source=post_page---top_nav_layout_nav-----------------------------------------)
Get app
[Write](https://medium.com/m/signin?operation=register&redirect=https%3A%2F%2Fmedium.com%2Fnew-story&source=---top_nav_layout_nav-----------------------new_post_topnav------------------)
[Search](https://medium.com/search?source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
# Try Hack Me- Blue Walkthrough
[](https://pulse-einher.medium.com/?source=post_page---byline--2d2ac6666de7---------------------------------------)
[PulseEinher](https://pulse-einher.medium.com/?source=post_page---byline--2d2ac6666de7---------------------------------------)
Follow
10 min read
·
1 hour ago
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fvote%2Fp%2F2d2ac6666de7&operation=register&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&user=PulseEinher&userId=3638310b8c49&source=---header_actions--2d2ac6666de7---------------------clap_footer------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fbookmark%2Fp%2F2d2ac6666de7&operation=register&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&source=---header_actions--2d2ac6666de7---------------------bookmark_footer------------------)
[Listen](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2Fplans%3Fdimension%3Dpost_audio_button%26postId%3D2d2ac6666de7&operation=register&redirect=https%3A%2F%2Fpulse-einher.medium.com%2Ftry-hack-me-blue-walkthrough-2d2ac6666de7&source=---header_actions--2d2ac6666de7---------------------post_audio_button------------------)
Share
**Hello, stranger — let’s begin.**
Ready to go??
Today’s problem is: [https://tryhackme.com/room/blue](https://tryhackme.com/room/blue)
**Challenge Overview:
Machine:**Blue (THM)
**Path:**Port Scan → SMB Enumeration → MS17–010 (EternalBlue) → Meterpreter Shell → SYSTEM Access → Credential Dumping
**Key Takeaway:**An unpatched SMBv1 service vulnerable to EternalBlue allowed unauthenticated remote code execution, directly granting SYSTEM-level access without requiring valid credentials.
**Business Impact:** In a real-world enterprise network, exposure of SMB services with known critical vulnerabilities could allow attackers to gain immediate SYSTEM-level access, dump credentials, and move laterally across the network — leading to domain-wide compromise, unauthorized access to sensitive data, and potential ransomware-style full infrastructure takeover.
The following entry was added to the `/etc/hosts` file to simplify hostname-b
DeepCamp AI