Exploit Notes
Exploit Notes

Exploits related to Network

Protocol

Dynamic Host Configuration Protocol (DHCP) Pentesting
FTP (File Transfer Protocol) Pentesting
IRC (Internet Relay Chat) Pentesting
Memcache Pentesting
Modbus Pentesting
NFS (Network File System) Pentesting
NTP (Network Time Protocol) Pentesting
RTSP (Real Time Streaming Protocol) Pentesting
Restricted Shell (rbash, rzsh) Bypass
SNMP (Simple Network Management Protocol) Pentesting
SSH (Secure Shell) Pentesting
TFTP (Trivial File Transfer Protocol) Pentesting
Telnet Pentesting
UPnP (Universal Plug and Play) Pentesting
VNC (Virtual Network Computing) Pentesting
WASTE Pentesting

Port Forwarding

Port Forwarding with Chisel
Port Forwarding with Plink
Port Forwarding with SSH
Port Forwarding with Socat

WiFi

MITM (Man in the Middle) Attack
WiFi Hacking

Tool

Tshark
Wireshark

VPN

IPsec VPN Pentesting
OpenVPN Hacking

Others

ARP (Address Resolution Protocol) Spoofing
EthernetIP Pentesting
Firewall
Honeypots
MAC Flooding Attack
Network Traffic Analysis (NTA)
Networking
Rsync Pentesting
Tor

SNMP (Simple Network Management Protocol) Pentesting

Last modified: 2022-12-22

Network

SNMP is an internet standard protocol for collecting and organizing information about managed devices on IP networks and for modifying that information to change device behavior. It uses UDP. A default port is 161.

Enumeration

nmap -sU --script snmp-info -p 161 <target-ip>
nmap -sU --script snmp-interfaces -p 161 <target-ip>
nmap -sU --script snmp-processes -p 161 <target-ip>
nmap -sU --script snmp-sysdescr -p 161 <target-ip>
nmap -sU --script snmp* -p 161 <target-ip>

Snmp-Check

Snmp-Check is SNMP enumerator.

# -c: community
# -p: port
snmp-check <target-ip> -p 161 -c public

If we found the community name, brute force it.

Brute Force the Community Names

hydra -P /usr/share/seclists/Discovery/SNMP/common-snmp-community-strings.txt <target-ip> snmp

onesixtyone -c /usr/share/seclists/Discovery/SNMP/snmp.txt <target-ip>
Twitter GitHub

Tools by HDKS

Fuzzagotchi

Automatic web fuzzer.

aut0rec0n

Auto reconnaissance CLI.

Hash Cracker

Hash identifier.