brutespray not parsing properly

Question

brutespray not parsing properly

Closed this issue 4 years ago · 7 comments

Hello,

I ran brutespray against a target and it only scanned the ssh port even though the file had both ssh and ftp. The command i ran was identical to this one #44 only i ran it on my ubuntu server

Answer 1 · 2020-10-13T17:00:50.000Z

do you have the scan available? if it's not on a standard port try the -sV option for Nmap

Answer 2 · 2020-10-15T20:09:26.000Z

@x90skysn3k I can share the command but not the output. I'll see if I can clean the output of sensitive data

Answer 3 · 2020-10-15T21:17:41.000Z

If you could just paste the part of the scan file that shows the server and port it missed.. for example
Host: 127.0.0.1 (localhost) Ports: 22/open/tcp//ssh//OpenSSH 8.3p1 Debian 1 (protocol 2.0)/, 201/open/tcp//ftp//vsftpd 3.0.3/ etc.. feel free to obfuscate the version, IP address and hostname if needed

Answer 4 · 2020-10-19T01:49:03.000Z

Let me see if I can find the file in question because i was just feeding it a long list of files poured in from the find command lol

Answer 5 · 2020-10-19T01:51:09.000Z

here you go

Host: 127.0.0.1 (example.com)	Ports: 21/open/tcp//ftp///, 22/open/tcp//ssh///, 80/open/tcp//http///, 443/open/tcp//https///, 2222/open/tcp//EtherNetIP-1///, 8011/open/tcp//unknown///, 8012/open/tcp/////, 8013/open/tcp/////, 8014/open/tcp//unknown///, 8015/open/tcp//cfg-cloud///, 8016/open/tcp//ads-s///, 8017/open/tcp/////, 8018/open/tcp//unknown///, 8853/open/tcp/////

Answer 6 · 2020-10-19T15:36:38.000Z

did you verify that it is actually FTP? i'd recommend making sure you scan with the -sV flag

Answer 7 · 2020-12-22T16:17:56.000Z

Hello,

It looks to be working now, so i will be closing this ticket