Comments on: SNMP-BCC — Relay-ing on SNMP for backdoor channel http://bechtsoudis.com/2012/01/15/snmp-bcc-relay-ing-on-snmp-for-backdoor-channel/#utm_source=rss&utm_medium=rss&utm_campaign=snmp-bcc-relay-ing-on-snmp-for-backdoor-channel Driven by Passion for Challenges Thu, 10 Apr 2014 08:41:30 +0000 hourly 1 http://wordpress.org/?v=3.9.2 By: vuln http://bechtsoudis.com/2012/01/15/snmp-bcc-relay-ing-on-snmp-for-backdoor-channel/#comment-313 Fri, 28 Sep 2012 23:17:53 +0000 http://bechtsoudis.com/?p=1134#comment-313 i have the tool in progress right now here is a screen shot of it

http://i48.tinypic.com/2vv9a55.png

]]> By: anestisb http://bechtsoudis.com/2012/01/15/snmp-bcc-relay-ing-on-snmp-for-backdoor-channel/#comment-312 Thu, 27 Sep 2012 05:37:46 +0000 http://bechtsoudis.com/?p=1134#comment-312 Contact details are available on the Contact me page.

]]> By: vuln http://bechtsoudis.com/2012/01/15/snmp-bcc-relay-ing-on-snmp-for-backdoor-channel/#comment-311 Wed, 26 Sep 2012 21:18:40 +0000 http://bechtsoudis.com/?p=1134#comment-311 do you have an email where we could chat id like to show you my code and see if it is corect

]]> By: vuln http://bechtsoudis.com/2012/01/15/snmp-bcc-relay-ing-on-snmp-for-backdoor-channel/#comment-310 Wed, 26 Sep 2012 20:13:33 +0000 http://bechtsoudis.com/?p=1134#comment-310 thanks a bunch i thought it was the get next i was dumping the results to a rich text box on the form and than i was going to iterate each one and do the login with the rdp

]]> By: anestisb http://bechtsoudis.com/2012/01/15/snmp-bcc-relay-ing-on-snmp-for-backdoor-channel/#comment-308 Wed, 26 Sep 2012 08:36:02 +0000 http://bechtsoudis.com/?p=1134#comment-308 To dump the entire OID tree just (snmp)walk all of it using GetNextRequest.
Here is a usefull tutorial.

]]> By: vuln http://bechtsoudis.com/2012/01/15/snmp-bcc-relay-ing-on-snmp-for-backdoor-channel/#comment-306 Mon, 24 Sep 2012 23:24:54 +0000 http://bechtsoudis.com/?p=1134#comment-306 my question is if i want to dum the entire oid how do i go about dumping just one oid

]]> By: anestisb http://bechtsoudis.com/2012/01/15/snmp-bcc-relay-ing-on-snmp-for-backdoor-channel/#comment-301 Sun, 23 Sep 2012 08:10:41 +0000 http://bechtsoudis.com/?p=1134#comment-301 Your bruteforcer idea is cool and can stand as a good start point to work with your preferred SNMP libraries. My philosophy is not to mess different stages during a pentest. Usually i don’t use tools that automate an enumeration/exploitation procedure. I prefer to keep the stages separated having full control during the process.

]]> By: vuln http://bechtsoudis.com/2012/01/15/snmp-bcc-relay-ing-on-snmp-for-backdoor-channel/#comment-297 Sun, 23 Sep 2012 02:07:19 +0000 http://bechtsoudis.com/?p=1134#comment-297 very cool i for one love to use snmp during a pentest it is the most overlooked and sometimes the most valuble foothold considering if you use the right tools you go undetected and dump active tcp and udp open ports and their source and endpoint addresses it is a very powerful pentest tool keep going i had an idea once to make a tool that would dump the username OID from a windows domain controller or windows box and use it to create an rdp session and use the usernames to attempt to bruteforce the rdp protocol which i have done in c# if you would like to see some of the code i made let me know at tech_support@realityrepair.org

i just had an issue with the snmp part

]]>