SMB Enumeration
SMB Architecture
SMB - Server Message Block Protocol - is a client-server communication protocol used for sharing access to files, printers, serial ports and other resources on a network. The SMB protocol is known as a response-request protocol, meaning that it transmits multiple messages between the client and server to establish a connection. Clients connect to servers using TCP/IP (actually NetBIOS over TCP/IP as specified in RFC1001 and RFC1002), NetBEUI or IPX/SPX.
Enumeration using enum4linux
The syntax of Enum4Linux is nice and simple:
1
enum4linux [options] ip
| Tag | Function |
|---|---|
| get userlist | -U |
| get machine list | -M |
| get namelist dump (different from -U and-M) | -N |
| get sharelist | -S |
| get password policy information | -P |
| get group and member list | -G |
| all of the above (full basic enumeration) | -a |
refernces
- https://medium.com/@gregIT/exploiting-simple-network-services-in-ctfs-ec8735be5eef
- https://attack.mitre.org/techniques/T1210/
- https://www.nextgov.com/cybersecurity/2019/10/nsa-warns-vulnerabilities-multiple-vpn-services/160456/
This post is licensed under CC BY 4.0 by the author.