Port Emuneration_____________________________________

Note: Always NMAP to confirm - as some services may show under non-standard port numbers

Port 21 - FTP_________________________________________________________

• Anonymous login allowed ?
• Login with username: anonymous  password: leave blank
• Do you have a username ?
• Brute force using Hydra

Port 22 - SSH___________________________________________________________

• Do you have a username ?
• Brute force using Hydra

Ports 80,8080,8000 - HTTP (web server)_____________________________________

• Open browser and visit the site
• Look at page source
• Visit robots.txt
• Run directory search to discover hidden directories

Ports 135-139,445 - SMB__________________________________________________

• Use Enum4Linux to retreive information on SMB shares
• Use SmbClient to connect to the shares

How to connect to smb share:

• smbclient -U <name>  //<ip> / <sharename>

Port 111, 2049 - Mount / NFS______________________________________________

• 1. showmount -e <ip>  (shows which IPs can connect to it)
• 2. mount -t nfs <ip>:<location> /mnt/<your folder in mnt>    
• Key: (-t = type,  <location> = remote location,  2nd location is local location)
• 3. type in cd /mnt/<your folder name in mnt> 
• 4. type ls -la (and view the mounted drive)