Created
February 27, 2021 22:20
-
-
Save abhi-agrawl/eae55b5bca2df67b9f622c111946bb5f to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Starting enum4linux v0.8.9 ( http://labs.portcullis.co.uk/application/enum4linux/ ) on Sat Feb 27 16:25:34 2021 | |
========================== | |
| Target Information | | |
========================== | |
Target ........... 10.10.104.156 | |
RID Range ........ 500-550,1000-1050 | |
Username ......... '' | |
Password ......... '' | |
Known Usernames .. administrator, guest, krbtgt, domain admins, root, bin, none | |
===================================================== | |
| Enumerating Workgroup/Domain on 10.10.104.156 | | |
===================================================== | |
[+] Got domain/workgroup name: WORKGROUP | |
============================================= | |
| Nbtstat Information for 10.10.104.156 | | |
============================================= | |
Looking up status of 10.10.104.156 | |
BASIC2 <00> - B <ACTIVE> Workstation Service | |
BASIC2 <03> - B <ACTIVE> Messenger Service | |
BASIC2 <20> - B <ACTIVE> File Server Service | |
..__MSBROWSE__. <01> - <GROUP> B <ACTIVE> Master Browser | |
WORKGROUP <00> - <GROUP> B <ACTIVE> Domain/Workgroup Name | |
WORKGROUP <1d> - B <ACTIVE> Master Browser | |
WORKGROUP <1e> - <GROUP> B <ACTIVE> Browser Service Elections | |
MAC Address = 00-00-00-00-00-00 | |
====================================== | |
| Session Check on 10.10.104.156 | | |
====================================== | |
[+] Server 10.10.104.156 allows sessions using username '', password '' | |
============================================ | |
| Getting domain SID for 10.10.104.156 | | |
============================================ | |
Domain Name: WORKGROUP | |
Domain Sid: (NULL SID) | |
[+] Can't determine if host is part of domain or part of a workgroup | |
======================================= | |
| OS information on 10.10.104.156 | | |
======================================= | |
[+] Got OS info for 10.10.104.156 from smbclient: | |
[+] Got OS info for 10.10.104.156 from srvinfo: | |
BASIC2 Wk Sv PrQ Unx NT SNT Samba Server 4.3.11-Ubuntu | |
platform_id : 500 | |
os version : 6.1 | |
server type : 0x809a03 | |
============================== | |
| Users on 10.10.104.156 | | |
============================== | |
========================================== | |
| Share Enumeration on 10.10.104.156 | | |
========================================== | |
Sharename Type Comment | |
--------- ---- ------- | |
Anonymous Disk | |
IPC$ IPC IPC Service (Samba Server 4.3.11-Ubuntu) | |
SMB1 disabled -- no workgroup available | |
[+] Attempting to map shares on 10.10.104.156 | |
//10.10.104.156/Anonymous Mapping: OK, Listing: OK | |
//10.10.104.156/IPC$ [E] Can't understand response: | |
NT_STATUS_OBJECT_NAME_NOT_FOUND listing \* | |
===================================================== | |
| Password Policy Information for 10.10.104.156 | | |
===================================================== | |
[+] Attaching to 10.10.104.156 using a NULL share | |
[+] Trying protocol 139/SMB... | |
[+] Found domain(s): | |
[+] BASIC2 | |
[+] Builtin | |
[+] Password Info for Domain: BASIC2 | |
[+] Minimum password length: 5 | |
[+] Password history length: None | |
[+] Maximum password age: 37 days 6 hours 21 minutes | |
[+] Password Complexity Flags: 000000 | |
[+] Domain Refuse Password Change: 0 | |
[+] Domain Password Store Cleartext: 0 | |
[+] Domain Password Lockout Admins: 0 | |
[+] Domain Password No Clear Change: 0 | |
[+] Domain Password No Anon Change: 0 | |
[+] Domain Password Complex: 0 | |
[+] Minimum password age: None | |
[+] Reset Account Lockout Counter: 30 minutes | |
[+] Locked Account Duration: 30 minutes | |
[+] Account Lockout Threshold: None | |
[+] Forced Log off Time: 37 days 6 hours 21 minutes | |
[+] Retieved partial password policy with rpcclient: | |
Password Complexity: Disabled | |
Minimum Password Length: 5 | |
=============================== | |
| Groups on 10.10.104.156 | | |
=============================== | |
[+] Getting builtin groups: | |
[+] Getting builtin group memberships: | |
[+] Getting local groups: | |
[+] Getting local group memberships: | |
[+] Getting domain groups: | |
[+] Getting domain group memberships: | |
======================================================================== | |
| Users on 10.10.104.156 via RID cycling (RIDS: 500-550,1000-1050) | | |
======================================================================== | |
[I] Found new SID: S-1-22-1 | |
[I] Found new SID: S-1-5-21-2853212168-2008227510-3551253869 | |
[I] Found new SID: S-1-5-32 | |
[+] Enumerating users using SID S-1-5-21-2853212168-2008227510-3551253869 and logon username '', password '' | |
S-1-5-21-2853212168-2008227510-3551253869-500 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-501 BASIC2\nobody (Local User) | |
S-1-5-21-2853212168-2008227510-3551253869-502 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-503 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-504 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-505 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-506 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-507 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-508 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-509 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-510 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-511 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-512 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-513 BASIC2\None (Domain Group) | |
S-1-5-21-2853212168-2008227510-3551253869-514 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-515 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-516 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-517 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-518 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-519 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-520 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-521 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-522 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-523 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-524 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-525 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-526 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-527 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-528 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-529 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-530 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-531 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-532 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-533 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-534 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-535 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-536 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-537 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-538 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-539 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-540 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-541 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-542 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-543 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-544 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-545 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-546 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-547 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-548 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-549 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-550 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1000 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1001 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1002 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1003 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1004 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1005 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1006 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1007 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1008 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1009 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1010 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1011 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1012 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1013 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1014 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1015 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1016 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1017 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1018 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1019 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1020 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1021 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1022 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1023 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1024 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1025 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1026 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1027 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1028 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1029 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1030 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1031 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1032 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1033 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1034 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1035 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1036 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1037 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1038 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1039 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1040 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1041 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1042 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1043 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1044 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1045 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1046 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1047 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1048 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1049 *unknown*\*unknown* (8) | |
S-1-5-21-2853212168-2008227510-3551253869-1050 *unknown*\*unknown* (8) | |
[+] Enumerating users using SID S-1-5-32 and logon username '', password '' | |
S-1-5-32-500 *unknown*\*unknown* (8) | |
S-1-5-32-501 *unknown*\*unknown* (8) | |
S-1-5-32-502 *unknown*\*unknown* (8) | |
S-1-5-32-503 *unknown*\*unknown* (8) | |
S-1-5-32-504 *unknown*\*unknown* (8) | |
S-1-5-32-505 *unknown*\*unknown* (8) | |
S-1-5-32-506 *unknown*\*unknown* (8) | |
S-1-5-32-507 *unknown*\*unknown* (8) | |
S-1-5-32-508 *unknown*\*unknown* (8) | |
S-1-5-32-509 *unknown*\*unknown* (8) | |
S-1-5-32-510 *unknown*\*unknown* (8) | |
S-1-5-32-511 *unknown*\*unknown* (8) | |
S-1-5-32-512 *unknown*\*unknown* (8) | |
S-1-5-32-513 *unknown*\*unknown* (8) | |
S-1-5-32-514 *unknown*\*unknown* (8) | |
S-1-5-32-515 *unknown*\*unknown* (8) | |
S-1-5-32-516 *unknown*\*unknown* (8) | |
S-1-5-32-517 *unknown*\*unknown* (8) | |
S-1-5-32-518 *unknown*\*unknown* (8) | |
S-1-5-32-519 *unknown*\*unknown* (8) | |
S-1-5-32-520 *unknown*\*unknown* (8) | |
S-1-5-32-521 *unknown*\*unknown* (8) | |
S-1-5-32-522 *unknown*\*unknown* (8) | |
S-1-5-32-523 *unknown*\*unknown* (8) | |
S-1-5-32-524 *unknown*\*unknown* (8) | |
S-1-5-32-525 *unknown*\*unknown* (8) | |
S-1-5-32-526 *unknown*\*unknown* (8) | |
S-1-5-32-527 *unknown*\*unknown* (8) | |
S-1-5-32-528 *unknown*\*unknown* (8) | |
S-1-5-32-529 *unknown*\*unknown* (8) | |
S-1-5-32-530 *unknown*\*unknown* (8) | |
S-1-5-32-531 *unknown*\*unknown* (8) | |
S-1-5-32-532 *unknown*\*unknown* (8) | |
S-1-5-32-533 *unknown*\*unknown* (8) | |
S-1-5-32-534 *unknown*\*unknown* (8) | |
S-1-5-32-535 *unknown*\*unknown* (8) | |
S-1-5-32-536 *unknown*\*unknown* (8) | |
S-1-5-32-537 *unknown*\*unknown* (8) | |
S-1-5-32-538 *unknown*\*unknown* (8) | |
S-1-5-32-539 *unknown*\*unknown* (8) | |
S-1-5-32-540 *unknown*\*unknown* (8) | |
S-1-5-32-541 *unknown*\*unknown* (8) | |
S-1-5-32-542 *unknown*\*unknown* (8) | |
S-1-5-32-543 *unknown*\*unknown* (8) | |
S-1-5-32-544 BUILTIN\Administrators (Local Group) | |
S-1-5-32-545 BUILTIN\Users (Local Group) | |
S-1-5-32-546 BUILTIN\Guests (Local Group) | |
S-1-5-32-547 BUILTIN\Power Users (Local Group) | |
S-1-5-32-548 BUILTIN\Account Operators (Local Group) | |
S-1-5-32-549 BUILTIN\Server Operators (Local Group) | |
S-1-5-32-550 BUILTIN\Print Operators (Local Group) | |
S-1-5-32-1000 *unknown*\*unknown* (8) | |
S-1-5-32-1001 *unknown*\*unknown* (8) | |
S-1-5-32-1002 *unknown*\*unknown* (8) | |
S-1-5-32-1003 *unknown*\*unknown* (8) | |
S-1-5-32-1004 *unknown*\*unknown* (8) | |
S-1-5-32-1005 *unknown*\*unknown* (8) | |
S-1-5-32-1006 *unknown*\*unknown* (8) | |
S-1-5-32-1007 *unknown*\*unknown* (8) | |
S-1-5-32-1008 *unknown*\*unknown* (8) | |
S-1-5-32-1009 *unknown*\*unknown* (8) | |
S-1-5-32-1010 *unknown*\*unknown* (8) | |
S-1-5-32-1011 *unknown*\*unknown* (8) | |
S-1-5-32-1012 *unknown*\*unknown* (8) | |
S-1-5-32-1013 *unknown*\*unknown* (8) | |
S-1-5-32-1014 *unknown*\*unknown* (8) | |
S-1-5-32-1015 *unknown*\*unknown* (8) | |
S-1-5-32-1016 *unknown*\*unknown* (8) | |
S-1-5-32-1017 *unknown*\*unknown* (8) | |
S-1-5-32-1018 *unknown*\*unknown* (8) | |
S-1-5-32-1019 *unknown*\*unknown* (8) | |
S-1-5-32-1020 *unknown*\*unknown* (8) | |
S-1-5-32-1021 *unknown*\*unknown* (8) | |
S-1-5-32-1022 *unknown*\*unknown* (8) | |
S-1-5-32-1023 *unknown*\*unknown* (8) | |
S-1-5-32-1024 *unknown*\*unknown* (8) | |
S-1-5-32-1025 *unknown*\*unknown* (8) | |
S-1-5-32-1026 *unknown*\*unknown* (8) | |
S-1-5-32-1027 *unknown*\*unknown* (8) | |
S-1-5-32-1028 *unknown*\*unknown* (8) | |
S-1-5-32-1029 *unknown*\*unknown* (8) | |
S-1-5-32-1030 *unknown*\*unknown* (8) | |
S-1-5-32-1031 *unknown*\*unknown* (8) | |
S-1-5-32-1032 *unknown*\*unknown* (8) | |
S-1-5-32-1033 *unknown*\*unknown* (8) | |
S-1-5-32-1034 *unknown*\*unknown* (8) | |
S-1-5-32-1035 *unknown*\*unknown* (8) | |
S-1-5-32-1036 *unknown*\*unknown* (8) | |
S-1-5-32-1037 *unknown*\*unknown* (8) | |
S-1-5-32-1038 *unknown*\*unknown* (8) | |
S-1-5-32-1039 *unknown*\*unknown* (8) | |
S-1-5-32-1040 *unknown*\*unknown* (8) | |
S-1-5-32-1041 *unknown*\*unknown* (8) | |
S-1-5-32-1042 *unknown*\*unknown* (8) | |
S-1-5-32-1043 *unknown*\*unknown* (8) | |
S-1-5-32-1044 *unknown*\*unknown* (8) | |
S-1-5-32-1045 *unknown*\*unknown* (8) | |
S-1-5-32-1046 *unknown*\*unknown* (8) | |
S-1-5-32-1047 *unknown*\*unknown* (8) | |
S-1-5-32-1048 *unknown*\*unknown* (8) | |
S-1-5-32-1049 *unknown*\*unknown* (8) | |
S-1-5-32-1050 *unknown*\*unknown* (8) | |
[+] Enumerating users using SID S-1-22-1 and logon username '', password '' | |
S-1-22-1-1000 Unix User\kay (Local User) | |
S-1-22-1-1001 Unix User\jan (Local User) | |
============================================== | |
| Getting printer info for 10.10.104.156 | | |
============================================== | |
No printers returned. | |
enum4linux complete on Sat Feb 27 16:30:37 2021 | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment