snmp-brute
脚本使用类型:
portrule
脚本所属分类:
intrusive, brute
脚本下载地址: http://nmap.org/svn/scripts/snmp-brute.nse
Attempts to find an SNMP community string by brute force guessing.
This script opens a sending socket and a sniffing pcap socket in parallel threads. The sending socket sends the SNMP probes with the community strings, while the pcap socket sniffs the network for an answer to the probes. If valid community strings are found, they are added to the creds database and reported in the output.
The script takes the snmp-brute.communitiesdb argument that
allows the user to define the file that contains the community strings to
be used. If not defined, the default wordlist used to bruteforce the SNMP
community strings is nselib/data/snmpcommunities.lst. In case
this wordlist does not exist, the script falls back to
nselib/data/passwords.lst
No output is reported if no valid account is found.
The filename of a list of community strings to try.
执行格式
nmap -sU --script snmp-brute <target> [--script-args snmp-brute.communitiesdb=<wordlist> ]
PORT STATE SERVICE 161/udp open snmp | snmp-brute: | dragon - Valid credentials |_ jordan - Valid credentials
Author: Philip Pickering, Gorjan Petrovski, Patrik Karlsson
License: VER007 整理 http://www.ver007.com