Enumeration

Nmap

nmap --script smtp-enum-users.nse -p 25,465,587 <Target IP Address>

Recon Script

#!/usr/bin/python 
import socket 
import sys 

if len(sys.argv) != 3:
        print("Usage: smtp_user_enum <username> <target_ip>")
        sys.exit(0)

# Create a Socket
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)

# Connect to the Server
ip = sys.argv[2]

connect = s.connect((ip,25))
# Receive the banner

banner = s.recv(1024)
print(banner)

# VRFY a user 
user = (sys.argv[1]).encode()

s.send(b'VRFY ' + user + b'\r\n')
result = s.recv(1024)
print(result)

# Close the socket
s.close()

python3 smtp_script.py <Username> <Target IP Address>

TCP: SMTP - 25

Enumeration

Nmap

nmap --script smtp-enum-users.nse -p 25,465,587 <Target IP Address>

Recon Script

#!/usr/bin/python 
import socket 
import sys 

if len(sys.argv) != 3:
        print("Usage: smtp_user_enum <username> <target_ip>")
        sys.exit(0)

# Create a Socket
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)

# Connect to the Server
ip = sys.argv[2]

connect = s.connect((ip,25))
# Receive the banner

banner = s.recv(1024)
print(banner)

# VRFY a user 
user = (sys.argv[1]).encode()

s.send(b'VRFY ' + user + b'\r\n')
result = s.recv(1024)
print(result)

# Close the socket
s.close()

python3 smtp_script.py <Username> <Target IP Address>

Exploit

Phishing

PreviousUDP: SNMP - 161 NextTCP: RDP - 3389

Last updated 18 days ago