Skip to main content

The Basics: Telnet, FTP and SMB

This post explains three very basic things you should know about hacking. Those are Telnet, FTP, and SMB. Telnet is a client-server protocol used to test connectivity between machines and issue commands. This is very easy way to gain access to a remote computer. This is almost never installed on production machines anymore FTP (File Transfer Protocol) and SMB (Server Message Block) are tools used to store and access files. If these are installed, you can use commands associated with each tool to view files on the remote computer. Sometimes, these contain valuable information that you can use to elevate access.

Telnet


$  telnet <IP> <PORT>

That's all there is to it :) 

FTP


$  ftp <IP> <PORT>

- port is usually 21

- Check if ftp supports anonymous login (username: anonymous, no password)

-use ls to list files, "get" to copy files to your local machine

 

If you get the message:

200 PORT command successful. Consider using PASV.
425 Failed to establish connection.
 

try passive mode i..e. type "passive ls"

Passive FTP is an FTP mode that can be requested by a client to alleviate the issues caused by client-side firewalls. Both the server and the client must support passive FTP for this process to work. When passive FTP is used, the client will initiate the connection to the server


SMB

SMB (Server Message Block) runs on port 445. 


$ smbmap -H 10.129.1.12 -u test -p test

Comments

Popular posts from this blog

How To Run TOR as a Non-Root User

Hello Friends, Today I finally figured out something that had eluded for quite a while, and that is... the mysterious process of running TOR as a non-root user! Like many other novice hackers, I had tried to run TOR by adding a user in Kali Linux through the following CLI commands: $ useradd guest $ passwd guest $ runuser -l guest -c ./start-tor-browser.desktop Which gave me the lovely error message below: $ Tor Browser must be run within the X Window System This last output one gives us a clue: the X Window System is graphical interface, which means that we need to run this software outside the CLI (you can try downloading the xorg, but that proved to be much of a headache). To do this, go here: Log out as root and login as the user you created. The computer will load the GUI and you will now be able to run TOR as a non-root user! Please let me know if this tutorial helped you out! xoxo

Port Forwarding

Dear Diary, Today was a good day. I learned about a powerful new feature called Port Forwarding! Port Forwarding is a feature of SSH that allows you to redirect traffic from on a target machine to another using a specified IP and port. This is a powerful tool because it allows you to relay communication from a target machine to an external host (i.e. your computer!). All you need is: SSH Credentials The port of the resource you want to access Let's say the web server is hosted on 127.0.0.1:8443. You can use the command below to access that webserver: ssh -L 8443:127.0.0.1:8443 <username>@10.10.10.184 Where you can now execute curl commands to retrieve information on that website (without port forwarding, this would've resulted in an access denied error!) curl -k -i -u admin:<password> https://localhost:8443 

RDP

  What is the name of the tool that we can use to initiate a desktop projection to our host using the terminal?  Answer: xfreerdp   Remember, RDP works for Windows machines. What is the name of the admin account on Windows? It is "Administrator'   You can attempt to RDP to windows machines using this: xfreerdp /v:10.129.1.13 /u:Administrator Press enter when prompted for password (might be poorly configured, and let you use an empty password).   How to use freerdp To install freerdp on Debian, Kali Linux, Linux Mint, Ubuntu and derivatives, run the command: sudo apt install freerdp2-x11 freerdp2-shadow-x11 If the freerdp2-x11 and freerdp2-shadow-x11 packages are not found, look for a package named freerdp . To install freerdp on Arch Linux and derivatives, run the command: 1 sudo pacman -S freerdp How to connect with freerdp command To connect to the remote desktop using xfreerdp , run a command of the form: 1 xfreerdp /f /u :USERNAME...