These Are ports open on the target machine. Now I use which Port For exploit the target
Not shown: 978 filtered ports
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
25/tcp open smtp
26/tcp closed rsftp
80/tcp open http
110/tcp open pop3
143/tcp open imap
443/tcp open https
465/tcp open smtps
587/tcp open submission
993/tcp open imaps
995/tcp open pop3s
3306/tcp open mysql
50000/tcp closed ibm-db2
50001/tcp closed unknown
50002/tcp closed iiimsf
50003/tcp closed unknown
50006/tcp closed unknown
50300/tcp closed unknown
50389/tcp closed unknown
50636/tcp closed unknown
50800/tcp closed unknown
Forum Thread: Help Regarding Port based Attacks
- Hot
- Active
-
Forum Thread:
How to Track Who Is Sms Bombing Me .
4
Replies
2 mo ago -
Forum Thread:
Removing Pay-as-You-Go Meter on Loan Phones.
1
Replies
2 mo ago -
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
3
Replies
2 mo ago -
Forum Thread:
moab5.Sh Error While Running Metasploit
17
Replies
3 mo ago -
Forum Thread:
Execute Reverse PHP Shell with Metasploit
1
Replies
4 mo ago -
Forum Thread:
Install Metasploit Framework in Termux No Root Needed M-Wiz Tool
1
Replies
5 mo ago -
Forum Thread:
Hack and Track People's Device Constantly Using TRAPE
35
Replies
6 mo ago -
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
6 mo ago -
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
7 mo ago -
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
7 mo ago -
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
9 mo ago -
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
9 mo ago -
Metasploit Error:
Handler Failed to Bind
41
Replies
9 mo ago -
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
10 mo ago -
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
10 mo ago -
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
10 mo ago -
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
10 mo ago -
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
10 mo ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
11 mo ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
11 mo ago
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How To:
Spy on Traffic from a Smartphone with Wireshark
-
How To:
Escape Restricted Shell Environments on Linux
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
Steganography:
How to Hide Secret Data Inside an Image or Audio File in Seconds
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How To:
Fix Bidirectional Copy/Paste Issues for Kali Linux Running in VirtualBox
-
How To:
Brute-Force FTP Credentials & Get Server Access
-
How To:
Hack Networks & Devices Right from Your Wrist with the Wi-Fi Deauther Watch
-
How To:
Automate Wi-Fi Hacking with Wifite2
-
How To:
Use Ettercap to Intercept Passwords with ARP Spoofing
-
How To:
Get Root with Metasploit's Local Exploit Suggester
-
How To:
Write an XSS Cookie Stealer in JavaScript to Steal Passwords
-
Hack Like a Pro:
How to Hack Remote Desktop Protocol (RDP) to Snatch the Sysadmin Password
-
How To:
Use Pupy, a Linux Remote Access Tool
5 Responses
I think you misunderstood. Ports are only one small part recon. You need the OS, services, applications, etc to determine an attack. When you have gathered all that info, you can go to www.securityfocus.com or other vulnerability database to find the appropriate vulnerability and exploit.
In addition, if this is a Windows machine, Microsoft just released eleven new vulnerabilities on their TechNet Security Bulletin. It looks like three of them are remote code execution vulnerabilities. You could definitely use some of those.
To add to OTW's comment, Be careful, this looks like a honeypot to me
( Its just my opinion )
# Sergeant
Thanks for the reply.
"looks like a honeypot to me"
Right, because you can tell a honeypot by which ports are open. LOL
Share Your Thoughts