SMB (139,445)

SMBmap

smbmap -H <target ip>
# List shares

smbmap -R Replication -H <target ip>
# List files and direcotories

smbmap -R Replication -H <target ip> -A <filename> -q
# Download files

smbclient

rpcclient

Nmap SMB NSE Scripts

updatedb
locate -r '\.nse$'| xargs grep categories | grep smb
nmap --script "vuln and safe" -Pn -n -p 445 <target ip>
nmap --script smb-vuln* -p 139,445 <target ip>

A Little Guide to SMB Enumeration - Hacking ArticlesHacking Articles

SMB Penetration Testing (Port 445) - Hacking ArticlesHacking Articles

NetBIOS and SMB Penetration Testing on Windows - Hacking ArticlesHacking Articles

Password Cracking:SMB - Hacking ArticlesHacking Articles

PreviousPOP3 (110)NextMySQL (3306)

Last updated 5 years ago

Was this helpful?