Paks3c

Simple Network Management Protocol, port 161, UDP Monitoring des équipements réseaux, peut aussi être utilisé pour faire de la configuration à distance.

Enumeration

SnmpWalk:

bash

snmpwalk -v2c -c $CommunityString $ip

Brute force

Brute force de la community string:

bash

onesixtyone -c /opt/useful/SecLists/Discovery/SNMP/snmp.txt $ip

Configuration potentiellement dangereuse

Settings	Description
rwuser noauth	Provides access to the full OID tree without authentication.
rwcommunity	Provides access to the full OID tree regardless of where the requests were sent from.
rwcommunity6	Same access as with rwcommunity with the difference of using IPv6.

Qradar

Splunk

CheatSheet

CheatSheets

Bases

Exploits

Sudo

CSRF

DNS rebinding

Drupal

File upload

IDOR

Injection de commande

Joomla

LFI

RFI

SQL injection

SSRF

SSTI

Tomcat

Werkzeug

Wordpress

XSS

XXE

ACE ACL DACL

ADCS

Enumeration

Groupes

Trust

Enumeration ​

SnmpWalk: ​

Brute force ​

Brute force de la community string: ​

Configuration potentiellement dangereuse ​

Enumeration

SnmpWalk:

Brute force

Brute force de la community string:

Configuration potentiellement dangereuse