hacktricks/network-services-pentesting/69-udp-tftp.md

<details>

<summary><strong>Leer AWS-hacking vanaf nul tot held met</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>

Ander maniere om HackTricks te ondersteun:

* As jy jou **maatskappy geadverteer wil sien in HackTricks** of **HackTricks in PDF wil aflaai** Kyk na die [**INSKRYWINGSPLANNE**](https://github.com/sponsors/carlospolop)!
* Kry die [**amptelike PEASS & HackTricks swag**](https://peass.creator-spring.com)
* Ontdek [**Die PEASS Familie**](https://opensea.io/collection/the-peass-family), ons versameling eksklusiewe [**NFTs**](https://opensea.io/collection/the-peass-family)
* **Sluit aan by die** 💬 [**Discord-groep**](https://discord.gg/hRep4RUj7f) of die [**telegram-groep**](https://t.me/peass) of **volg** ons op **Twitter** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks_live)**.**
* **Deel jou haktruuks deur PRs in te dien by die** [**HackTricks**](https://github.com/carlospolop/hacktricks) en [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github-opslag.

</details>

<figure><img src="/.gitbook/assets/WebSec_1500x400_10fps_21sn_lightoptimized_v2.gif" alt=""><figcaption></figcaption></figure>

{% embed url="https://websec.nl/" %}


# Basiese Inligting

**Trivial File Transfer Protocol (TFTP)** is 'n eenvoudige protokol wat op **UDP-poort 69** gebruik word vir die oordrag van lêers sonder die nodigheid van outentifikasie. Dit word uitgelig in **RFC 1350**, sy eenvoudigheid beteken dat dit belangrike sekuriteitskenmerke ontbreek, wat lei tot beperkte gebruik op die openbare internet. Nietemin word **TFTP** wyd binne groot interne netwerke gebruik vir die verspreiding van **konfigurasie lêers** en **ROM-beelde** na toestelle soos **VoIP-handsets**, dankie aan sy doeltreffendheid in hierdie spesifieke scenarios.

**TODO**: Verskaf inligting oor wat 'n Bittorrent-tracker is (Shodan identifiseer hierdie poort met daardie naam). As jy meer inligting hieroor het, laat ons weet byvoorbeeld in die [**HackTricks telegram-groep**](https://t.me/peass) (of in 'n github-kwessie in [PEASS](https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite)).

**Verstekpoort:** 69/UDP
```
PORT   STATE SERVICE REASON
69/udp open  tftp    script-set
```
# Opsomming

TFTP bied nie 'n lys van gids nie, so die skrip `tftp-enum` van `nmap` sal probeer om standaard paaie met 'n brutale krag aan te val.
```bash
nmap -n -Pn -sU -p69 -sV --script tftp-enum <IP>
```
## Aflaai/Oplaai

Jy kan Metasploit of Python gebruik om te kyk of jy lêers kan aflaai/oplaai:
```bash
msf5> auxiliary/admin/tftp/tftp_transfer_util
```

```bash
import tftpy
client = tftpy.TftpClient(<ip>, <port>)
client.download("filename in server", "/tmp/filename", timeout=5)
client.upload("filename to upload", "/local/path/file", timeout=5)
```
## Shodan

* `port:69`


<figure><img src="/.gitbook/assets/WebSec_1500x400_10fps_21sn_lightoptimized_v2.gif" alt=""><figcaption></figcaption></figure>

{% embed url="https://websec.nl/" %}


<details>

<summary><strong>Leer AWS-hacking vanaf nul tot held met</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>

Ander maniere om HackTricks te ondersteun:

* As jy wil sien dat jou **maatskappy geadverteer word in HackTricks** of **HackTricks aflaai in PDF-formaat** Kyk na die [**INSKRYWINGSPLANNE**](https://github.com/sponsors/carlospolop)!
* Kry die [**amptelike PEASS & HackTricks swag**](https://peass.creator-spring.com)
* Ontdek [**Die PEASS Familie**](https://opensea.io/collection/the-peass-family), ons versameling eksklusiewe [**NFTs**](https://opensea.io/collection/the-peass-family)
* **Sluit aan by die** 💬 [**Discord-groep**](https://discord.gg/hRep4RUj7f) of die [**telegram-groep**](https://t.me/peass) of **volg** ons op **Twitter** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks_live)**.**
* **Deel jou haktruuks deur PR's in te dien by die** [**HackTricks**](https://github.com/carlospolop/hacktricks) en [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github-opslag. 

</details>
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00			`<details>`

Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`<summary><strong>Leer AWS-hacking vanaf nul tot held met</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`Ander maniere om HackTricks te ondersteun:`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`* As jy jou maatskappy geadverteer wil sien in HackTricks of HackTricks in PDF wil aflaai Kyk na die [INSKRYWINGSPLANNE](https://github.com/sponsors/carlospolop)!`
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`* Kry die [amptelike PEASS & HackTricks swag](https://peass.creator-spring.com)`
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`* Ontdek [Die PEASS Familie](https://opensea.io/collection/the-peass-family), ons versameling eksklusiewe [NFTs](https://opensea.io/collection/the-peass-family)`
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`* Sluit aan by die 💬 [Discord-groep](https://discord.gg/hRep4RUj7f) of die [telegram-groep](https://t.me/peass) of volg ons op Twitter 🐦 [@carlospolopm](https://twitter.com/hacktricks_live).`
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`* Deel jou haktruuks deur PRs in te dien by die [HackTricks](https://github.com/carlospolop/hacktricks) en [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) github-opslag.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`

Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`<figure><img src="/.gitbook/assets/WebSec_1500x400_10fps_21sn_lightoptimized_v2.gif" alt=""><figcaption></figcaption></figure>`

			`{% embed url="https://websec.nl/" %}`

Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`# Basiese Inligting`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			Trivial File Transfer Protocol (TFTP) is 'n eenvoudige protokol wat op UDP-poort 69 gebruik word vir die oordrag van lêers sonder die nodigheid van outentifikasie. Dit word uitgelig in RFC 1350, sy eenvoudigheid beteken dat dit belangrike sekuriteitskenmerke ontbreek, wat lei tot beperkte gebruik op die openbare internet. Nietemin word TFTP wyd binne groot interne netwerke gebruik vir die verspreiding van konfigurasie lêers en ROM-beelde na toestelle soos VoIP-handsets, dankie aan sy doeltreffendheid in hierdie spesifieke scenarios.
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`TODO: Verskaf inligting oor wat 'n Bittorrent-tracker is (Shodan identifiseer hierdie poort met daardie naam). As jy meer inligting hieroor het, laat ons weet byvoorbeeld in die [HackTricks telegram-groep](https://t.me/peass) (of in 'n github-kwessie in [PEASS](https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite)).`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`Verstekpoort: 69/UDP`
GitBook: [#2777] gitbookissooooo slow I cannot write 2021-10-18 11:21:18 +00:00			```
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			`PORT STATE SERVICE REASON`
			`69/udp open tftp script-set`
			```
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`# Opsomming`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			TFTP bied nie 'n lys van gids nie, so die skrip `tftp-enum` van `nmap` sal probeer om standaard paaie met 'n brutale krag aan te val.
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`nmap -n -Pn -sU -p69 -sV --script tftp-enum <IP>`
			```
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`## Aflaai/Oplaai`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`Jy kan Metasploit of Python gebruik om te kyk of jy lêers kan aflaai/oplaai:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`msf5> auxiliary/admin/tftp/tftp_transfer_util`
			```

			```bash
			`import tftpy`
			`client = tftpy.TftpClient(<ip>, <port>)`
			`client.download("filename in server", "/tmp/filename", timeout=5)`
			`client.upload("filename to upload", "/local/path/file", timeout=5)`
			```
fix mess 2 2022-05-01 12:49:36 +00:00			`## Shodan`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
			* `port:69`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00

Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`<figure><img src="/.gitbook/assets/WebSec_1500x400_10fps_21sn_lightoptimized_v2.gif" alt=""><figcaption></figcaption></figure>`

			`{% embed url="https://websec.nl/" %}`


Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00			`<details>`

Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`<summary><strong>Leer AWS-hacking vanaf nul tot held met</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`Ander maniere om HackTricks te ondersteun:`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`* As jy wil sien dat jou maatskappy geadverteer word in HackTricks of HackTricks aflaai in PDF-formaat Kyk na die [INSKRYWINGSPLANNE](https://github.com/sponsors/carlospolop)!`
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`* Kry die [amptelike PEASS & HackTricks swag](https://peass.creator-spring.com)`
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`* Ontdek [Die PEASS Familie](https://opensea.io/collection/the-peass-family), ons versameling eksklusiewe [NFTs](https://opensea.io/collection/the-peass-family)`
Translated to Afrikaans 2024-02-11 02:07:06 +00:00			`* Sluit aan by die 💬 [Discord-groep](https://discord.gg/hRep4RUj7f) of die [telegram-groep](https://t.me/peass) of volg ons op Twitter 🐦 [@carlospolopm](https://twitter.com/hacktricks_live).`
Translated ['binary-exploitation/rop-return-oriented-programing/ret2lib/ 2024-04-07 23:00:02 +00:00			`* Deel jou haktruuks deur PR's in te dien by die [HackTricks](https://github.com/carlospolop/hacktricks) en [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) github-opslag.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`