Introduction#

You will need working knowledge of [[Simple Network Management Protocol (SNMP|Simple Network Management Protocol (SNMP)]].md) in order to follow through.

SNMP Enumeration using `snmp-check`#

snmp-check is a simple utility for basic SNMP enumeration. You only need to provide it with the IP address to enumerate:

snmp-check [IP]

Furthermore, you have the following command-line options:
- -p: Change the port to enumerate. Default is 161.
- -c: Change the community string to use. Default is public
- -v: Change the SNMP version to use. Default is v1.

There are additional arguments that can be provided but these are the salient ones.

![[res/SNMP_snmp_check.png]]

SNMP Enumeration using `snmpwalk`#

snmpwalk is a much more versatile tool for SNMP enumeration. It's syntax is mostly the same as snmp-check:

![[res/SNMP_snmpwalk.png]]

Bruteforce community strings with `onesixtyone`#

Notwithstanding its age, onesixtyone is a good tool which allows you to bruteforce community strings by specifying a file instead of a single string with its -c option. It's syntax is rather simple:

![[res/SNMP_onesixtyone_syntax.png]]

![[res/SNMP_onesixtyone_bruteforce.png]]

Introduction#

SNMP Enumeration using snmp-check#

SNMP Enumeration using snmpwalk#

Bruteforce community strings with onesixtyone#

SNMP Enumeration using `snmp-check`#

SNMP Enumeration using `snmpwalk`#

Bruteforce community strings with `onesixtyone`#