If you can get a group string with read-only (RO) or read/write (RW) permissions, it will play an important role in extracting information from the device.
snmp v1 v2In order to gain permission to manage a switch, you first need to find its SNMP community string.
SNMPscanning
-Information gold mine
-Often misplaced
-public /private /manager
Tool introduction
1.onesixtyone
If you already know that the target group string is public, you can use this command to see the target system information
onesixtyone ip public
If you do not know the target group string
onesixtyone -c /usr/share/doc/onesixtyone/dict.txt 58.215.76.23 -o my.log -w 100
Show the other party group string public
View onesixtyone directory
dpkg -L onesixtyone
You can also use your dictionary to view your own password directory.
cat /usr/share/doc/onesixtyone/dict.txt
2.snmpwalkCommand is the most effective way to test all kinds of information in the system.
1、snmpwalk -c public -v 1 ip .1.3.6.1.2.1.25.1 Get the number of system process users such as Windows terminal.
2、snmpwalk -c public -v 1 ip .1.3.6.1.2.1.25.2.2 Get total system memory
3、snmpwalk -c public -v 1 ip hrSystemNumUsers Get system user number
4、snmpwalk -c public -v 1 ip .1.3.6.1.2.1.4.20 Get IP information
5、snmpwalk -v 2c -c public ip .1.3.6.1.2.1.1 View system information
-v refers to the version, and -c means the key.
snmpwalkThere are many functions, you can get all kinds of information of the system, just change the type of information behind. If you do not know what type, you can not specify, so that all system information is obtained:
snmpwalk -v 2c -c public 10.0.1.52
Other commonly used
.1.3.6.1.4.1.77.1.4.1.0 List the domain name
.1.3.6.1.2.1.25.6.3.1.2 List installed software
.1.3.6.1.2.1.25.4.2.1.2 List system process
Let’s show you the command of snmpwalk -v 2C -c public IP.1.3.6.1.2.1.1.
