OSCP Notes
Search…
Telnet

SMTP Banner grabbing through telnet

1
telnet $ip 25
Copied!
Copied!
If you received a message code 250,251,252 which means user account is valid.

Nmap enumeration

1
nmap -p 23 --script=telnet-ntlm-info.nse
Copied!

Configuration files

1
/etc/inetd.conf
2
/etc/xinetd.d/telnet
3
/etc/xinetd.d/stelnet
Copied!

BruteForce Attack

1
hydra -l root -P /root/SecLists/Passwords/10_million_password_list_top_100.txt $ip telnet
Copied!

Exploitation

    Gather version numbers
    Searchsploit
    Default Creds
    Creds previously gathered
    Download the software
Last modified 1yr ago