SMBMap

SMBMap is a penetration testing tool that enumerates SMB (Server Message Block) share drives across a network, identifying permissions, file contents, and potential access control misconfigurations. It supports pass-the-hash authentication, file upload and download, remote command execution, and recursive directory listing across accessible shares. Active Directory penetration testers and red team operators use SMBMap to quickly assess what data is accessible through network file shares during internal engagements, often uncovering sensitive documents, credentials, and configuration files. The tool is particularly effective in Windows domain environments where misconfigured share permissions are a common attack vector for lateral movement and data exfiltration.