My Pentesting Cheatsheet

Home
Preparation
Information Gathering
Vulnerability Assessment
Pentesting Machine
Enumeration
- NMAP Scan types explained
- Firewall and IDS/IPS Evasion
Footprinting
Web Information Gathering
Vulnerability Assessment
File Transfers
Shells & Payloads
- Reverse Shells + Bind + Web
Password Attacks
Attacking Common Services
- FTP
- SMB
Deobfuscation
File Inclusion
Metasploit
- msfvenom
Privilege Escalation
- Windows
Custom compiled files
XSS

Powered by GitBook

On this page

SMTP

Typical ports: TCP/25 TCP/465

PreviousDNS NextIMAP/POP3

Last updated 2 months ago

Nmap script: smtp-open-relay

telnet <FQDM/IP> 25

Tools

Metasploit (msfconsole) module: scanner/smtp/smtp_enum

smtp-user-enum

AUTH PLAIN

AUTH is a service extension used to authenticate the client.

HELO

The client logs in with its computer name and thus starts the session.

MAIL FROM

The client names the email sender.

RCPT TO

The client names the email recipient.

DATA

The client initiates the transmission of the email.

RSET

The client aborts the initiated transmission but keeps the connection between client and server.

VRFY

The client checks if a mailbox is available for message transfer.

EXPN

The client also checks if a mailbox is available for messaging with this command.

NOOP

The client requests a response from the server to prevent disconnection due to time-out.

QUIT

The client terminates the session.