Terminal Docs 💫
Terminal DocsTerminal Docs
DocumentationLinuxWindowsNetworksPentesting NetworksPentesting LinuxPentesting WindowsPentesting Web
Pentesting Ports

Port 139,445/SMB

Pentesting-Ports

Enumeration

Enumerating SMB with enum4linux

enum4linux -a IP

OS Fingerprinting

nmap -p 139,445 --script smb-os-discovery <target_ip>

Version Detection

nmap -p 139,445 --script smb-protocols <target_ip>

With smbmap

smbmap -H $ip -u " "
smbmap -H 10.10.11.222 -u " "

Pentesting SMB

We can try to login to see the network shares on the domain using a tool called smbmap.

smbmap -H 10.10.189.115 -u anonymous

Enumerating Shares

smbclient \\\\<IP>\\ -U <username>
smbclient \\\\<IP>\\<SMB-FOLDER> -U <username>
smbmap -H <target_ip> -u <username>

Brute Forcing

hydra -t 1 -V -f -l <username> -P /usr/share/wordlists/rockyou.txt smb://<target_ip>

Last updated on

Port 6379/Redis

Pentesting-Ports

Reverse Shell CheatSheet

Pentesting Networks

On this page

Enumeration
Enumerating SMB with enum4linux
OS Fingerprinting
Version Detection
With smbmap
Pentesting SMB
Enumerating Shares
Brute Forcing