FTP 21

The File Transfer Protocol (FTP) is a standard network protocol used for the transfer of computer files between a client and server on a computer network.

PORT STATE SERVICE

21/tcp open ftp

- Full FTP scan

nmap -p 21 --script ftp-anon,ftp-bounce,ftp-libopie,ftp-proftpd-backdoor,ftp-vsftpd-backdoor,ftp-vuln-cve2010-4221 <target>

nmap --script ftp-* -p 21 {IP}

- Grab FTP Banner via telnet

telnet -n {IP} 21

- Grab FTP Certificate if existing

openssl s_client -connect {IP}:21 -starttls ftp

- Connect with Browser

ftp://anonymous:anonymous@{IP}

- File Listing

nxc ftp 192.168.0.10 -u 'user' -p 'badpassword' --ls

- File Download

With ftp:

ftp <IP> PASSIVE BINARY get <FILE>

With wget:

wget --mirror 'ftp://ftp_user:UTDRSCH53c"$6hys@10.10.10.59'

wget --no-passive-ftp --mirror 'ftp://anonymous:anonymous@10.10.10.98' if PASV transfer is disabled

With Netexec:

nxc ftp 192.168.0.10 -u 'user' -p 'badpassword' --get hola.txt

- Fle Upload

ftp <IP> PASSIVE BINARY put <FILE>

With Netexec:

nxc ftp 192.168.0.10 -u 'user' -p 'badpassword' --put [LOCAL_FILE] [REMOTE_FILE]

- Password Spraying

nxc ftp 192.168.1.0/24 -u userfile -p passwordfile --no-bruteforce --continue-on-success

- Brute-Forcing (Need Username)

hydra -t 1 -l {Username} -P {Big_Passwordlist} -vV {IP} ftp

hydra -V -f -L <USERS_LIST> -P <PASSWORDS_LIST> ftp://<IP> -u -vV