search
NetExec GithubNetexec Lab
githubEdit

🆕Enumeration

hashtag
Enumerate NFS Servers

Detect remote NFS server, enumerate available versions and check for the root escape (see escape to root file system).

nxc nfs <ip> 

# Example Output                                                          
NFS         <ip>  <port>  <ip>   [*] Supported NFS versions: (3, 4) (root escape:True)

hashtag
Enumerate NFS Shares

Use the flag --shares to enumerate exported NFS shares. Output shows target UID, Permissions, Storage Usage, Access List.

nxc nfs <ip> --shares

# Example Output
NFS         <ip>  <nfs_port>  <ip>   [*] Supported NFS versions: (3, 4) (root escape:False)
NFS         <ip>  <nfs_port>  <ip>   [*] Enumerating NFS Shares
NFS         <ip>  <nfs_port>  <ip>   UID        Perms    Storage Usage    Share                          Access List    
NFS         <ip>  <nfs_port>  <ip>   ---        -----    -------------    -----                          -----------    
NFS         <ip>  <nfs_port>  <ip>   2000       rw-      9.2GB/19.5GB    /home/user/Desktop/test        *              
NFS         <ip>  <nfs_port>  <ip>   1000       rw-      9.2GB/19.5GB    /home/user/Desktop/NFSShare    192.168.0.0/24

hashtag
List files on a share

Use the --ls option to list files on the target system. Chose the target share with the --share flag. To use the root fs escape see "escape to root file system".

hashtag
Enumerate the File on NFS Shares

Enumerate all files and folders recursively with --enum-shares with a given recursion depth (default is 3 layers). The depth can be changed with --enum-shares 5. Output shows target UID, Permissions, File Size, File Path, Access List.

PreviousCommand ExecutionNextDownload and Upload Files

Last updated

Was this helpful?