The Ethical Hacker Network - port 5101 any idea ??

Latest Additions

Who's Online

EH-Net > Ethical Hacking Discussions and Related Certifications > Network Pen Testing (Moderator: don) > port 5101 any idea ??

Pages: [1] Go Down

« previous next »

	Author	Topic: port 5101 any idea ?? (Read 9455 times)
0 Members and 1 Guest are viewing this topic.

rebrov

Full Member

Offline

Posts: 130

port 5101 any idea ??

« on: July 15, 2009, 05:03:05 AM »

when i tried to pen testing my friend network i succeded to penetrate his master pc with metasploit with port 445

but i scanned another ip with nmap i found only 1 port opened

5101

what is this port and how can i exploit it via metasploit and wat is the payloads for this service

and question about metasploit how i choose the exploit and the payloads when i know the port there's many exploits for port 445 e.g how i pick specific one ?


	Logged

UNIX

Hero Member

Offline

Posts: 1235

Re: port 5101 any idea ??

« Reply #1 on: July 15, 2009, 05:09:01 AM »

Port 5101 can be associated with many services, however, only because of an open port you can't know for sure that a particular service is running on it.

e.g.
Talarian_TCP/UDP, Yahoo Messenger, ...

However, as I already recommended to you in another thread, try first to obtain some of the more basic concepts before trying to "hack your friend's master pc".


« Last Edit: July 15, 2009, 05:11:29 AM by awesec »	Logged

rebrov

Full Member

Offline

Posts: 130

Re: port 5101 any idea ??

« Reply #2 on: July 15, 2009, 06:20:30 AM »

hmm seems like u douting me lol man im not hacking them im just testing and once i connected with metasploit its done i dont upload anything inside like trojans or smth cuz he is my friend

the 5101 port got service named as admdog dunno i think its yahoo service but how to exploit it this is the question i wonder maybe something wrong with my nmap command line ??

nmap -O -vv "ip"

cuz 1 only port in this os is weird


	Logged

xXxKrisxXx

Hero Member

Offline

Posts: 512

Re: port 5101 any idea ??

« Reply #3 on: July 15, 2009, 01:43:24 PM »

I'm going to back awesec on this one and say that it's most likely because your friends using Yahoo! Messenger that's why the ports open. I could be wrong but I don't know a specific exploit in the framework that targets that specific port. I don't see nothing wrong with your nmap scan, I don't know why your adding the -O parameter, if you say you penetrated the machine with a port 445 exploit, you clearly know what OS he's running. Perhaps the -sV parameter would prove useful to you in identifying the service or just find out if your friends using YIM and your guess would be proven.


	Logged

eCPPT, GCIH, OSCP, OSWP

rebrov

Full Member

Offline

Posts: 130

Re: port 5101 any idea ??

« Reply #4 on: July 15, 2009, 03:24:31 PM »

hmm wat should i use instead of -O ?? -A ??

i will try -sV but i know the service is admdog dunno wats this service

another question

if i knew the port and the service how can i choose the exploit and the payload

im trying to improve my self in framwork .. i want to figure out the exploits much better


	Logged

LSOChris

Guest

Re: port 5101 any idea ??

« Reply #5 on: July 15, 2009, 05:45:52 PM »

use amap


	Logged

UNIX

Hero Member

Offline

Posts: 1235

Re: port 5101 any idea ??

« Reply #6 on: July 16, 2009, 12:36:29 AM »

When you know port, service etc. it should't be hard to search in the web for available exploits. Helpful would be of course the exact version and build numbers of the software you want to attack.


	Logged

rebrov

Full Member

Offline

Posts: 130

Re: port 5101 any idea ??

« Reply #7 on: July 18, 2009, 09:46:15 AM »

can u be more specific plz e.g port 135 msrpc microsoft windows rpc

this is the service : msrpc

how can i get the exploit for it cuz as i c port 135 is in almost computers i guess