evcsec
commented
5 years ago I'll put something together over the coming days for this one since I'm getting pretty used to the code base (pre-updates you're working on @codingo).
Open codingo opened 5 years ago
evcsec
commented
5 years ago I'll put something together over the coming days for this one since I'm getting pretty used to the code base (pre-updates you're working on @codingo).
codingo
commented
5 years ago Sounds good, and thank-you!
codingo
commented
5 years ago Hi @evcsec, just touching base to see where we landed with this one?
evcsec
commented
5 years ago Hey @codingo - for visibility purposes, I'm still going to jump into this one. I'm re-working some of the threading capabilities within Reconnoitre. Once completed I'll revisit SNMP capabilities and look to expand these to the level you're after for it 👍
codingo
commented
5 years ago I think before trying for MIB values this should first also scan for community strings, there's a good list of those here: https://github.com/fuzzdb-project/fuzzdb/blob/master/wordlists-misc/wordlist-common-snmp-community-strings.txt
codingo
commented
5 years ago @evcsec just touching base to see where we landed with this one?
evcsec
commented
5 years ago Hey @codingo, I'm planning to get this one back on track over the coming couple of days. Unless you were after something sooner, or someone else wanted to get involved?
Let me know your thoughts :)
codingo
commented
5 years ago Hi @evcsec, very happy for you to take this one on. Let me know if you need any help with it.
SNMP scanning is currently rather unimplemented and only scans the public tree. Adding further common trees (admin/private, or even loading a json file of trees) would be beneficial to enumeration.
Relatively easy change so tagging this for Hacktoberfest but I'll address if still outstanding in November.