Update missing smtp ports
Mohammad D
GitHub
parent
d57735cc14
commit
75531cf5f7
|
|
@ -2,12 +2,12 @@ id: expn-mail-detect
|
||||||
|
|
||||||
info:
|
info:
|
||||||
name: EXPN Mail Server Detect
|
name: EXPN Mail Server Detect
|
||||||
author: r3dg33k
|
author: r3dg33k,userdehghani
|
||||||
severity: info
|
severity: info
|
||||||
description: |
|
description: |
|
||||||
The "EXPN" can be used by attackers to learn about valid usernames on the target system. On some SMTP servers, EXPN can be used to show the subscribers of a mailing list subscription lists are generally considered to be sensitive information.
|
The "EXPN" can be used by attackers to learn about valid usernames on the target system. On some SMTP servers, EXPN can be used to show the subscribers of a mailing list subscription lists are generally considered to be sensitive information.
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 1
|
max-request: 4
|
||||||
tags: mail,expn,network,detect,smtp
|
tags: mail,expn,network,detect,smtp
|
||||||
|
|
||||||
tcp:
|
tcp:
|
||||||
|
|
@ -18,7 +18,7 @@ tcp:
|
||||||
|
|
||||||
host:
|
host:
|
||||||
- "{{Hostname}}"
|
- "{{Hostname}}"
|
||||||
port: 25
|
port: 25,2525,465,587
|
||||||
|
|
||||||
matchers:
|
matchers:
|
||||||
- type: word
|
- type: word
|
||||||
|
|
|
||||||
|
|
@ -2,12 +2,12 @@ id: starttls-mail-detect
|
||||||
|
|
||||||
info:
|
info:
|
||||||
name: STARTTLS Mail Server Detection
|
name: STARTTLS Mail Server Detection
|
||||||
author: r3dg33k
|
author: r3dg33k,userdehghani
|
||||||
severity: info
|
severity: info
|
||||||
description: |
|
description: |
|
||||||
STARTTLS is an email protocol command that tells an email server that an email client, including an email client running in a web browser, wants to turn an existing insecure connection into a secure one.
|
STARTTLS is an email protocol command that tells an email server that an email client, including an email client running in a web browser, wants to turn an existing insecure connection into a secure one.
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 1
|
max-request: 4
|
||||||
tags: mail,starttls,network,detect,smtp
|
tags: mail,starttls,network,detect,smtp
|
||||||
|
|
||||||
tcp:
|
tcp:
|
||||||
|
|
@ -18,7 +18,7 @@ tcp:
|
||||||
|
|
||||||
host:
|
host:
|
||||||
- "{{Hostname}}"
|
- "{{Hostname}}"
|
||||||
port: 25
|
port: 25,2525,465,587
|
||||||
|
|
||||||
matchers:
|
matchers:
|
||||||
- type: word
|
- type: word
|
||||||
|
|
|
||||||
|
|
@ -2,14 +2,14 @@ id: smtp-commands-enum
|
||||||
|
|
||||||
info:
|
info:
|
||||||
name: SMTP Commands Enumeration
|
name: SMTP Commands Enumeration
|
||||||
author: pussycat0x
|
author: pussycat0x,userdehghani
|
||||||
severity: info
|
severity: info
|
||||||
description: |
|
description: |
|
||||||
Attempts to use EHLO and HELP to gather the Extended commands supported by an SMTP server.
|
Attempts to use EHLO and HELP to gather the Extended commands supported by an SMTP server.
|
||||||
reference:
|
reference:
|
||||||
- https://nmap.org/nsedoc/scripts/smtp-commands.html
|
- https://nmap.org/nsedoc/scripts/smtp-commands.html
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 1
|
max-request: 4
|
||||||
shodan-query: smtp
|
shodan-query: smtp
|
||||||
verified: true
|
verified: true
|
||||||
tags: network,enum,smtp,mail
|
tags: network,enum,smtp,mail
|
||||||
|
|
@ -23,7 +23,7 @@ tcp:
|
||||||
|
|
||||||
host:
|
host:
|
||||||
- "{{Hostname}}"
|
- "{{Hostname}}"
|
||||||
port: 25
|
port: 25,2525,465,587
|
||||||
|
|
||||||
matchers:
|
matchers:
|
||||||
- type: word
|
- type: word
|
||||||
|
|
|
||||||
|
|
@ -2,14 +2,14 @@ id: smtp-user-enum
|
||||||
|
|
||||||
info:
|
info:
|
||||||
name: SMTP User Enumeration
|
name: SMTP User Enumeration
|
||||||
author: pussycat0x
|
author: pussycat0x,userdehghani
|
||||||
severity: medium
|
severity: medium
|
||||||
description: |
|
description: |
|
||||||
enumerate the users on a SMTP server by issuing the VRFY/EXPN commands
|
enumerate the users on a SMTP server by issuing the VRFY/EXPN commands
|
||||||
reference:
|
reference:
|
||||||
- https://nmap.org/nsedoc/scripts/smtp-enum-users.html
|
- https://nmap.org/nsedoc/scripts/smtp-enum-users.html
|
||||||
metadata:
|
metadata:
|
||||||
max-request: 1
|
max-request: 4
|
||||||
shodan-query: smtp
|
shodan-query: smtp
|
||||||
verified: true
|
verified: true
|
||||||
tags: network,enum,smtp,mail
|
tags: network,enum,smtp,mail
|
||||||
|
|
@ -23,7 +23,7 @@ tcp:
|
||||||
|
|
||||||
host:
|
host:
|
||||||
- "{{Hostname}}"
|
- "{{Hostname}}"
|
||||||
port: 25
|
port: 25,2525,465,587
|
||||||
|
|
||||||
attack: batteringram
|
attack: batteringram
|
||||||
payloads:
|
payloads:
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue