I've been testing out the metasploit framework and nexpose on my own network, playing around with pentesting, and nexpose showed two main vulnerabilities in my windows 8.1 64bit system, (cifs-smb-signing-disabled) and (cifs-smb-signing-not-required). I've spent a good chunk of time searching on how to exploit those vulnerabilities, but im coming up with nothing relevant. Im new to all this, so my question is, how do you guys find the correct exploit to use?