FTP Check (TCP 21)

FTP Anonymous Login

Tools

nmap -sSV --script ftp-anon.nse -p21 IP -T4 --reason

Solution

1. Disable FTP and use SSH
   
2. Disable FTP Anonymous Login
   https://antnix07.blogspot.com/2018/01/disable-anonymous-user-in-ftp-server-on.html
   

---

SNMP (TCP/UDP 161)

SNMP Enum

Tools

nmap -sV -p161 --script snmp-info IP --reason -T4
nmap -sU -p161 --script snmp-info IP --reason -T4
snmpwalk -c public/private/any -v1/2c IP

Solution

N/A

---

SSL Check (TCP 443)

1. Check for cipher strength nmap -sSCV -Pn --script ssl-enum-ciphers -p443 IP
   sslscan IP
   

Tools

https://github.com/rbsec/sslscan
https://github.com/nabla-c0d3/sslyze
https://testssl.sh/

Solution

Windows: https://www.nartac.com/Products/IISCrypto/

---

SMBv1 Check (TCP 445)

Smb protocols

nmap -sV -T5 -Pn -p 445 --script smb-protocols IPs

Solution

https://support.microsoft.com/en-us/help/2696547/detect-enable-disable-smbv1-smbv2-smbv3-in-windows-and-windows-server

---

RDP Check (TCP 3389)

NLA,FIPS,ENC

Network Level Authentication (NLA) Disabled
Terminal Services Encryption Level is Medium or Low, or
Terminal Services Encryption Level is not FIPS-140 Compliant

Tools

https://github.com/portcullislabs/rdp-sec-check

Solution

videos:https://www.youtube.com/watch?v=nyBOJwvUaKQ
Link:https://www.phr33fall.co.uk/windows-rdp-hardening/

---