Script snmp-hh3c-logins

Script types: portrule
Categories: default, discovery, safe

Script Summary

Attempts to enumerate Huawei / HP/H3C Locally Defined Users through the hh3c-user.mib OID

For devices running software released pre-Oct 2012 only an SNMP read-only string is required to access the OID. Otherwise a read-write string is required.

Output is 'username - password - level: {0|1|2|3}'

Password may be in cleartext, ciphertext or sha256 Levels are from 0 to 3 with 0 being the lowest security level

Script Arguments


See the documentation for the creds library.


See the documentation for the snmp library.

Example Usage

nmap -sU -p 161 --script snmp-hh3c-logins --script-args creds.snmp=:<community> <target>

Script Output

| snmp-hh3c-logins:
|   users:
|     admin - admin - level: 3
|_    h3c - h3capadmin - level 0



  • Kurt Grutzmacher

License: Same as Nmap--See