zer010bs
commented
4 years ago UDP: 632 / IPMI
Open zer010bs opened 5 years ago
zer010bs
commented
4 years ago UDP: 632 / IPMI
zer010bs
commented
4 years ago UDP: 389 / LDAP 636 / LDAPS
Phenomite
commented
4 years ago udp 5 Remote job entry udp 11 systat udp 15 netstat (systat sister) udp 13 daytime no payload, returns 30 byte avg (2x amp) udp 18 message send protocol udp 37 time protocol (can enumerate system timezone, albiet IP basically does that already) udp 39 resource location protocol udp 54 Xerox (lots of open responders) udp 629 netinfo for macOS udp 631 Internet printing protocol udp 639 MSDP udp 1167 Cisco IP SLAs Control Protocol udp 1723 pptp udp 1883 MQTT udp 2003 Dlink click-n-connect / Brutus udp 3000 btsync udp 2049 nfsd rpc udp 4500 IPSec Nat traversal
SNMP: tcp and udp
161/162 (snmp, trap) 10161/10162 (snmps, trap)
if open -> bad if open + communitystring is readable (like public) -> critical
impact: ability to read machine-data, configs (firewall, router 'n' stuff). if not secured,, ability to alter machine-settings
https://en.wikipedia.org/wiki/Simple_Network_Management_Protocol#Using_SNMP_to_attack_a_network