SMB (139,445)
SMBmap
smbmap -H <target ip>
# List shares
smbmap -R Replication -H <target ip>
# List files and direcotories
smbmap -R Replication -H <target ip> -A <filename> -q
# Download files
smbclient
rpcclient
Nmap SMB NSE Scripts
updatedb
locate -r '\.nse$'| xargs grep categories | grep smb
nmap --script "vuln and safe" -Pn -n -p 445 <target ip>
nmap --script smb-vuln* -p 139,445 <target ip>
Last updated
Was this helpful?