Re: [NSE] snmp-brute port to brute framework

[Patrik Karlsson <patrik () cqure net>]

On Jul 6, 2011, at 9:39 PM, Gorjan Petrovski wrote:

> Hi,
>
> I'm porting the snmp-brute script to the brute framework and I found
> that there are default passwords used to brute if no wordlist is
> supplied. These passwords are: 'public', 'private', 'snmpd', 'snmp',
> 'mngt', 'cisco', 'admin'. S?ome of them are not present in the default
> wordlist that the brute framework uses. I couldn't find posts about
> the original script SNMPcommunitybrute.nse and I've no idea how the
> author got hold of these passwords. Should I add them to the wordlist
> or not? Maybe I should add them to be used in addition to the default
> wordlist, only for the snmp-brute script when no other wordlist is
> specified?
>
> Input is appreciated :)
>
> Thanks,
> Gorjan
> _______________________________________________
> Sent through the nmap-dev mailing list
> http://cgi.insecure.org/mailman/listinfo/nmap-dev
> Archived at http://seclists.org/nmap-dev/


I think it's probably best to keep a separate file with snmp communities.
The ones hard coded into the current script all seem to be good candidates.
I just committed some small updates to the brute library that fix a few minor issues.

I made a (not very big) effort to port the snmp-brute script to the brute framework a while back and ran into a few 
performance issues.
http://seclists.org/nmap-dev/2011/q2/56

//Patrik
--
Patrik Karlsson
http://www.cqure.net
http://www.twitter.com/nevdull77

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/