Tweet
E ae Galera,to iniciando na area de pentest é o seguinte fiz um scan em um servidor ai (nao vou falar o nome por questao de segurança) posso exploralo atraves da vulnerabilidade na porta 445 ?
Scan dele...
PORT STATE SERVICE VERSION
25/tcp filtered smtp
80/tcp open http Apache httpd 2.2.14 ((Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 mod_apreq2-20090110/2.7.1 mod_perl/2.0.4 Perl/v5.10.1)
|_http-methods: No Allow or Public header in OPTIONS response (status code 200)
|_http-title: Dragon OT - Latest News
|_http-favicon: Unknown favicon MD5: 99D3048046C94B6ECBEDF8FF69B4385B
135/tcp open msrpc Microsoft Windows RPC
139/tcp filtered netbios-ssn
443/tcp open ssl/http Apache httpd 2.2.14 ((Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 mod_apreq2-20090110/2.7.1 mod_perl/2.0.4 Perl/v5.10.1)
|_sslv2: server still supports SSLv2
|_http-title: Absolut OT - Latest News
|_http-methods: No Allow or Public header in OPTIONS response (status code 200)
445/tcp open microsoft-ds Microsoft Windows 2003 or 2008 microsoft-ds
1025/tcp open msrpc Microsoft Windows RPC
3306/tcp open mysql MySQL (unauthorized)
3389/tcp open microsoft-rdp Microsoft Terminal Service
12345/tcp filtered netbus
espero que me ajudem rsrs.
Scan dele...
PORT STATE SERVICE VERSION
25/tcp filtered smtp
80/tcp open http Apache httpd 2.2.14 ((Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 mod_apreq2-20090110/2.7.1 mod_perl/2.0.4 Perl/v5.10.1)
|_http-methods: No Allow or Public header in OPTIONS response (status code 200)
|_http-title: Dragon OT - Latest News
|_http-favicon: Unknown favicon MD5: 99D3048046C94B6ECBEDF8FF69B4385B
135/tcp open msrpc Microsoft Windows RPC
139/tcp filtered netbios-ssn
443/tcp open ssl/http Apache httpd 2.2.14 ((Win32) DAV/2 mod_ssl/2.2.14 OpenSSL/0.9.8l mod_autoindex_color PHP/5.3.1 mod_apreq2-20090110/2.7.1 mod_perl/2.0.4 Perl/v5.10.1)
|_sslv2: server still supports SSLv2
|_http-title: Absolut OT - Latest News
|_http-methods: No Allow or Public header in OPTIONS response (status code 200)
445/tcp open microsoft-ds Microsoft Windows 2003 or 2008 microsoft-ds
1025/tcp open msrpc Microsoft Windows RPC
3306/tcp open mysql MySQL (unauthorized)
3389/tcp open microsoft-rdp Microsoft Terminal Service
12345/tcp filtered netbus
espero que me ajudem rsrs.
Comment