Anonymous FTP access allows anyone to access your public_ftp folder, allowing unidentified visitors to download (and possibly upload) files on your website. Anonymous FTP creates the potential for a security hole for hackers and is not recommended.
PoC代码[已公开]
id: ftp-anonymous-login
info:
name: FTP Anonymous Login
author: C3l3si4n,pussycat0x
severity: medium
description: |
Anonymous FTP access allows anyone to access your public_ftp folder, allowing unidentified visitors to download (and possibly upload) files on your website. Anonymous FTP creates the potential for a security hole for hackers and is not recommended.
reference:
- https://tools.ietf.org/html/rfc2577
metadata:
max-request: 1
verified: true
tags: network,ftp,default-login,tcp,vuln
tcp:
- inputs:
- data: "USER anonymous\r\n"
read: 1024
- data: "PASS anonymous\r\n"
read: 1024
host:
- "{{Hostname}}"
port: 21
matchers-condition: and
matchers:
- type: word
part: raw
words:
- "Anonymous access allowed,"
- "Logged in anonymously"
- "Anonymous user logged"
- "Login successful"
- "Guest login ok"
condition: or
- type: word
part: raw
words:
- "HTTP/1.1"
- "230."
- ".230"
- "User cannot log"
- "ESMTP"
negative: true
condition: or
# digest: 490a00463044022077ce9df68603a5121a150b09d72f0289ed2ae784bfce57b0286c3dee3ee11bb902203c1d8625693a76b9650f6e3d5cb73785b9521cf0c5371fbd16284f15385f4461:922c64590222798bb761d5b6d8e72950