|
 | 作者: tt [jsfjsf]
 论坛用户 |
登录 |
| 本人是菜鸟一只,最近正在研究入侵技术,有了扫描结果可依然不知该如何入侵,不知哪位高手可以指点一二?本菜鸟在这里三生有礼了!! 扫描目标主机开放的端口: 21号端口(ftp)开放! 25号端口(smtp)开放! 110号端口(pop3)开放! 1026号端口(未知)开放! 1433号端口(ms-sql-s)开放! 6000号端口(未知)开放! 开始扫描FTP漏洞: FTP服务器的Banner: 测试匿名用户 没有匿名用户 开始扫描SMTP漏洞: SMTP服务器的Banner: 检查decode别名: 检查漏洞 检查debug漏洞 检查kill漏洞 检查wiz漏洞 检查rcpt to: /tmp/.rhosts漏洞 检查+ +漏洞 检查RSET漏洞 检查mail from: |/bin/mail hacker < /etc/passwd漏洞 检查RSET漏洞 检查mail from: |tail|sh漏洞 开始扫描FINGER漏洞: 目标没有开放FINGER服务... 开始扫描CGI漏洞: 目标没有开放WWW服务... 开始扫描IIS漏洞: 目标没有开放WWW服务... 开始扫描RPC漏洞: 目标没有开放RPC查询服务... 开始扫描NTUSER漏洞: NT服务器的USER的SID: 尝试利用USER2SID命令获得目标机上存在的一些常见用户名: 开始调入用户名列表-------- 测试用户名: webmaster LookupAccountName failed - no such account 测试用户名: master LookupAccountName failed - no such account 测试用户名: www LookupAccountName failed - no such account 测试用户名: web LookupAccountName failed - no such account 测试用户名: sybase LookupAccountName failed - no such account 测试用户名: oracle LookupAccountName failed - no such account 测试用户名: informix LookupAccountName failed - no such account 测试用户名: Abc123 LookupAccountName failed - no such account 测试用户名: sam_exec LookupAccountName failed - no such account 测试用户名: + LookupAccountName failed - no such account 测试用户名: oracle8 LookupAccountName failed - no such account 测试用户名: access LookupAccountName failed - no such account 测试用户名: users Number of subauthorities is -32-545 Domain is BUILTIN Length of SID in memory is 16 bytes Type of SID is SidTypeAlias 测试用户名: ftp LookupAccountName failed - no such account 测试用户名: account LookupAccountName failed - no such account 测试用户名: backup LookupAccountName failed - no such account 测试用户名: owc LookupAccountName failed - no such account 测试用户名: datebase LookupAccountName failed - no such account 测试用户名: public LookupAccountName failed - no such account 测试用户名: info LookupAccountName failed - no such account 测试用户名: wais LookupAccountName failed - no such account 测试用户名: news LookupAccountName failed - no such account 测试用户名: bbs LookupAccountName failed - no such account 测试用户名: adm LookupAccountName failed - no such account 测试用户名: sync LookupAccountName failed - no such account 测试用户名: john LookupAccountName failed - no such account 测试用户名: sports LookupAccountName failed - no such account 测试用户名: china LookupAccountName failed - no such account 测试用户名: ADMINISTRATOR Number of subauthorities is -32-545-21-515967899-1957994488-839522115-500 Domain is JSF-S11UUGBVZHR Length of SID in memory is 28 bytes Type of SID is SidTypeUser 测试用户名: GUEST Number of subauthorities is -32-545-21-515967899-1957994488-839522115-500-21-515967899-1957994488-839522115-501 Domain is JSF-S11UUGBVZHR Length of SID in memory is 28 bytes Type of SID is SidTypeUser 测试用户名: BACKUP LookupAccountName failed - no such account 测试用户名: ROOT LookupAccountName failed - no such account 测试用户名: ADMIN LookupAccountName failed - no such account 测试用户名: USER LookupAccountName failed - no such account 测试用户名: DEMO LookupAccountName failed - no such account 测试用户名: TEST LookupAccountName failed - no such account 测试用户名: SYSTEM Number of subauthorities is -32-545-21-515967899-1957994488-839522115-500-21-515967899-1957994488-839522115-501-18 Domain is NT AUTHORITY Length of SID in memory is 12 bytes Type of SID is SidTypeWellKnownGroup 测试用户名: OPERATOR LookupAccountName failed - no such account 测试用户名: OPER LookupAccountName failed - no such account 测试用户名: LOCAL Number of subauthorities is -32-545-21-515967899-1957994488-839522115-500-21-515967899-1957994488-839522115-501-18-0 Domain is Length of SID in memory is 12 bytes Type of SID is SidTypeWellKnownGroup 开始查询SHARES: 列举netbios共享(尝试winnt/2000系统)...要等待一段时间... NetBIOS Share Results---------------- Share Enumeration Error (0) 列举netbios共享(尝试win95/98)...要等待一段时间... Share Enumeration Error (0) 开始查询USERS: 列举用户名...要等待一段时间... User Enumeration Error:(1722) 开始查询GROUPS: 列举工作组...要等待一段时间... 开始查询TRANSPORTS: 列举netbios transports...要等待一段时间... A system error has occurred: 53 Total of 0 entries enumerate 开始查询DATETIME: 列举时间...要等待一段时间... A system error has occurred: 53 开始查询SERVICES: 列举服务...要等待一段时间... Error with OpenSCManager 开始查询SESSIONS: 列举空会话(NULLSESSION)...要等待一段时间... Null Session NOT Established Error: 67. 列举空连接(NULLDISCONNECT)...要等待一段时间... Null Session NOT Terminated Error: 2250. 开始查询REGISTRY: 列举远程注册表...要等待一段时间... RegConnectRegistry (HKEY_PERFORMANCE_DATA) ERROR: 53 RegConnectRegistry ERROR: 53 开始查询MORE: 远程解析主机信息... OS is UNIX/LINUX or OS Detection Error 53: 开始扫描PRINTER漏洞: |
| 地主 发表时间: 04-08-30 00:43 |
 | 回复: lqfrla [lqfrla]  论坛用户 |
登录 |
|
什么都没有哦 |
| B1层 发表时间: 04-08-30 01:16 |
 | 回复: august258 [august258] 论坛用户 |
登录 |
|
1433开了,试着扫一下SQL弱口令 |
| B2层 发表时间: 04-08-30 11:16 |
|
20CN网络安全小组版权所有
Copyright © 2000-2010 20CN Security Group. All Rights Reserved.
论坛程序编写:NetDemon
粤ICP备05087286号
论坛: 菜鸟乐园 标题: 入侵求助