๐Enumeration
Enumerate NFS Servers
Detect remote NFS server, enumerate available versions and check for the root escape (see escape to root file system).
nxc nfs <ip>
# Example Output
NFS <ip> <port> <ip> [*] Supported NFS versions: (3, 4) (root escape:True)Enumerate NFS Shares
Use the flag --shares to enumerate exported NFS shares. Output shows target UID, Permissions, Storage Usage, Access List.
nxc nfs <ip> --shares
# Example Output
NFS <ip> <nfs_port> <ip> [*] Supported NFS versions: (3, 4) (root escape:False)
NFS <ip> <nfs_port> <ip> [*] Enumerating NFS Shares
NFS <ip> <nfs_port> <ip> UID Perms Storage Usage Share Access List
NFS <ip> <nfs_port> <ip> --- ----- ------------- ----- -----------
NFS <ip> <nfs_port> <ip> 2000 rw- 9.2GB/19.5GB /home/user/Desktop/test *
NFS <ip> <nfs_port> <ip> 1000 rw- 9.2GB/19.5GB /home/user/Desktop/NFSShare 192.168.0.0/24List files on a share
Use the --ls option to list files on the target system. Chose the target share with the --share flag. To use the root fs escape see "escape to root file system".
Enumerate the File on NFS Shares
Enumerate all files and folders recursively with --enum-shares with a given recursion depth (default is 3 layers). The depth can be changed with --enum-shares 5. Output shows target UID, Permissions, File Size, File Path, Access List.
Last updated
Was this helpful?