🕵️Enumeration

Scan The Target using Nmap

nmap <IP addr>

nmap -sV <IP addr>

enum4linux <IP addr>

msfconsole

use auxiliary/scanner/smb/smb_version

show options

set RHOSTS <IP addr>

run

./kerbrute_linux_amd64 userenum -d lab.ropnop.com --dc <domain IP address> usernames.txt

sudo smbclient -U spookysec.local/svc-admin -L //<IP address>

sudo smbclient -U spookysec.local/svc-admin //<IP address>/backup

Last updated 1 year ago

Was this helpful?