SNMP enumeration
This section will cover the tools that can be used to check for the Simple Network Monitoring Protocol (SNMP). Even though the information from a SNMP device may not look important, as pen-testers, we have seen misconfigured SNMP devices, which allows us to read the configuration, get important information, and even have modify the configuration.
We suggest you also check the SNMP devices when you encounter a penetration testing job; you may be surprised with what you find.
onesixtyone
The onesixtyone tool can be used as a SNMP scanner to find whether the SNMP string exists on a device. The difference with respect to other SNMP scanners is that this tool sends all the SNMP requests as fast as it can (10 milliseconds apart). Then it waits for the responses and logs them. If the device is available, it will send responses containing the SNMP string.
To access onesixtyone, go to the console and type onesixtyone.
By default, Metasploitable 2 does not have the SNMP daemon installed...
