Need Help using Nmap & Metasploit.

Greeting Experts,
      I need some help configuring metasploit (cli) and nmap to run at the same time (i.e. simplify my reconnaissance and vuln checking at the same time). What do I mean?  My bosses task me with project of looking for weak passwords on our network.  So I scan a subnet range 10.xx.xx.xx/20 using nmap (i.e.  nmap  -sS –A –O  <subnet range>  -xO   SubnetRange.xml)  that can take few hours, then uploaded in to metasploit database,  look for  smb services (i.e.  Services  -p 445 –R) and put them in to temp memory. Once that is done I use the smb_login metasploit module, use local administrator account with list of passwords to test.
What I am wanting to do is combine the nmap process and smb_login  scan together to automait the process…. Can this be done?  If so, what is the process to complete it?
MikeSecurityAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

asavenerCommented:
That seems to be a really slow way of checking for weak passwords....

Typically, one would download the SAM database and then run L0ftcrack or similar against it.  This assumes you have the admin privileges and authorization to do so.
MikeSecurityAuthor Commented:
I attempting to take from black box approach. and see if I can escalate to privilege account using mimkatz to get the  Domain user account.
asavenerCommented:
My bosses task me with project of looking for weak passwords on our network.

Your approach will not accomplish your stated goal.  Finding one account with a weak password is not sufficient, if the goal is to audit the passwords on your network/domain.

Best of luck to you.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
MikeSecurityAuthor Commented:
the 2nd link was able to give me the info I needed....
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Network Security

From novice to tech pro — start learning today.