Script snmp-hh3c-logins
Script types:
portrule
Categories:
default, discovery, safe
Download: https://svn.nmap.org/nmap/scripts/snmp-hh3c-logins.nse
Script Summary
Attempts to enumerate Huawei / HP/H3C Locally Defined Users through the hh3c-user.mib OID
For devices running software released pre-Oct 2012 only an SNMP read-only string is required to access the OID. Otherwise a read-write string is required.
Output is 'username - password - level: {0|1|2|3}'
Password may be in cleartext, ciphertext or sha256 Levels are from 0 to 3 with 0 being the lowest security level
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr_na-c03515685 http://grutztopia.jingojango.net/2012/10/hph3c-and-huawei-snmp-weak-access-to.html
Script Arguments
- creds.[service], creds.global
See the documentation for the creds library.
- snmp.retries, snmp.timeout, snmp.version
See the documentation for the snmp library.
Example Usage
nmap -sU -p 161 --script snmp-hh3c-logins --script-args creds.snmp=:<community> <target>
Script Output
| snmp-hh3c-logins: | users: | admin - admin - level: 3 |_ h3c - h3capadmin - level 0
Requires
Author:
License: Same as Nmap--See https://nmap.org/book/man-legal.html