Find Server Version

While enumerating services it may be hard to ascertain the actual version of the server running. Though the enumeration tool/script may come up with the version, it is possible for the server to run an entirely different version.

Here is a method to find the real version of SMB.

Edit the smb.conf file to include the following line under the global section and restart the service,

client min protocol = LANMAN1

This enables SMB client to accept the minimum protocol the server may accept.

After restarting, run the following 2 commands from different terminals,

#Terminal 1
sudo ngrep -i -d tun0 's.?a.?m.?b.?a.*[[:digit:]]' port 139 

#Terminal 2
echo exit | smbclient -L 192.168.1.1

PreviousSMB NextDirectory Traversal using Symlink

Last updated 2 years ago

Was this helpful?