RPC - 111

if you notice rpcbind ports open with other various ports labeled “mount” or “nfs” perform an nfs scan immediately

If you notice rpcbind ports open with other various ports labeled “mount” or “nfs” perform an nfs scan immediately

https://haiderm.com/linux-privilege-escalation-using-weak-nfs-permissions/

ls /usr/share/nmap/scripts/ | grep RPC
rpcinfo –p x.x.x.x

#Find available .nse scripts in the default directory for each service

ls /usr/share/nmap/scripts/ | grep rpc

bitcoinrpc-info.nse,deluge-rpc-brute.nse,metasploit-msgrpc-brute.nse,metasploit-xmlrpc-brute.nse,msrpc-enum.nse,nessus-xmlrpc-brute.nse,rpcap-brute.nse,rpcap-info.nse,rpc-grind.nse,rpcinfo.nse,xmlrpc-methods.nse

PreviousSamba 2.2.x NextNFS

Last updated 4 years ago

Was this helpful?