On Cyber War
TwitterGitHubLinkedIn
  • Welcome
  • Source Zero Con References
  • 1. Reconnaissance/ OSINT
    • Information gathering
    • OSINT tools
    • Search Engine OSINT
    • Sock puppets
  • 2. Scanning
    • Host discovery
    • Port Scanning with Nmap
    • Nmap Scripting Engine
  • 3. Enumeration
    • 21 - FTP
    • 22 - SSH
    • 25 - SMTP
    • 53 - DNS
    • 80/443 - HTTP(s)
    • 111 - NFS
    • 135 - RPC
    • 139/445 - NetBIOS/SMB
    • 161 (UDP) - SNMP
    • Wordpress
    • Finger (Solaris)
    • Active Directory
  • 4. Exploitation
    • Public exploits
    • Web application attacks
      • Command injection
      • Cross site scripting
      • Directory traversal
      • File inclusion
      • SQL injection
    • Password attacks
    • Buffer overflows
    • Active Directory
    • Metasploit
  • 5. Maintaining access
    • Upgrading simple shells
    • Reverse shells
    • MSFvenom
    • File transfers
    • Linux privilege escalation
    • Windows privilege escalation
    • Tunneling/Port Forwarding
  • 6. Miscellaneous
    • Connections
  • 7. Walkthroughs
    • HTB - Blunder
    • HTB - Haircut
    • THM -HackPark
Powered by GitBook
On this page
  • Simple Network Management Protocol
  • snmp-check
  • snmpwalk
  • onesixtyone
  1. 3. Enumeration

161 (UDP) - SNMP

Simple Network Management Protocol

SNMP is commonly misunderstood resulting in misconfigurations.

nmap -sU --open -p 161 10.11.1.1-254 
onesixtyone 10.11.1.1/24

snmp-check

snmp-check $targetip

snmpwalk

V1 enumeration (entire MIB tree)

snmpwalk -c public -v1 -t 10 $ipaddress
snmpwalk -c private -v1 -t 10 $ipaddress
snmpwalk -c manager -v1 -t 10 $ipaddress

Enumeration

snmpwalk -c public -v1 $ipaddress 1.3.6.1.4.1.77.1.2.25 (users)
snmpwalk -c public -v1 $ipaddress 1.3.6.1.2.1.25.1.6.0 (processes)
snmpwalk -c public -v1 $ipaddress 1.3.6.1.2.1.25.4.2.1.2 (running programs)
snmpwalk -c public -v1 $ipaddress 1.3.6.1.2.1.25.2.3.1.4 (storage units)
snmpwalk -c public -v1 $ipaddress 1.3.6.1.2.1.6.13.1.3 (tcp local ports)
snmpwalk -c public -v1 $ipaddress 1.3.6.1.2.1.25.6.3.1.2 (software)

onesixtyone

onesixtyone $targetip
Previous139/445 - NetBIOS/SMBNextWordpress

Last updated 1 year ago