mirror of
https://github.com/carlospolop/hacktricks
synced 2024-12-02 01:19:45 +00:00
55 lines
3.6 KiB
Markdown
55 lines
3.6 KiB
Markdown
# 548 - Kupima Apple Filing Protocol (AFP)
|
|
|
|
<details>
|
|
|
|
<summary><strong>Jifunze kuhusu kudukua AWS kutoka sifuri hadi shujaa na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>
|
|
|
|
Njia nyingine za kusaidia HackTricks:
|
|
|
|
* Ikiwa unataka kuona **kampuni yako inatangazwa kwenye HackTricks** au **kupakua HackTricks kwa muundo wa PDF** Angalia [**MPANGO WA KUJIUNGA**](https://github.com/sponsors/carlospolop)!
|
|
* Pata [**swag rasmi ya PEASS & HackTricks**](https://peass.creator-spring.com)
|
|
* Gundua [**The PEASS Family**](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [**NFTs**](https://opensea.io/collection/the-peass-family) ya kipekee
|
|
* **Jiunge na** 💬 [**Kikundi cha Discord**](https://discord.gg/hRep4RUj7f) au [**kikundi cha telegram**](https://t.me/peass) au **tufuate** kwenye **Twitter** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks_live)**.**
|
|
* **Shiriki mbinu zako za kudukua kwa kuwasilisha PRs kwenye** [**HackTricks**](https://github.com/carlospolop/hacktricks) na [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) repos za github.
|
|
|
|
</details>
|
|
|
|
|
|
## Taarifa Msingi
|
|
|
|
**Apple Filing Protocol** (**AFP**), zamani inajulikana kama AppleTalk Filing Protocol, ni itifaki maalum ya mtandao iliyomo ndani ya **Huduma ya Faili ya Apple** (**AFS**). Imeundwa kutoa huduma za faili kwa macOS na mfumo wa zamani wa Mac OS. AFP inajulikana kwa kusaidia majina ya faili ya Unicode, ruhusa za POSIX na orodha za kudhibiti upatikanaji, vifurushi vya rasilimali, sifa za ziada zilizopewa majina, na taratibu za kufunga faili za kisasa. Ilikuwa itifaki kuu ya huduma za faili katika Mac OS 9 na toleo za awali.
|
|
|
|
**Bandari ya Default:** 548
|
|
```bash
|
|
PORT STATE SERVICE
|
|
548/tcp open afp
|
|
```
|
|
### **Uchambuzi**
|
|
|
|
Kwa ajili ya uchambuzi wa huduma za AFP, amri na hati zifuatazo ni muhimu:
|
|
```bash
|
|
msf> use auxiliary/scanner/afp/afp_server_info
|
|
nmap -sV --script "afp-* and not dos and not brute" -p <PORT> <IP>
|
|
```
|
|
**Scripts na Maelezo Yao:**
|
|
|
|
- **afp-ls**: Hii script hutumiwa kuorodhesha volumes na faili zilizopo za AFP.
|
|
- **afp-path-vuln**: Inaorodhesha volumes na faili zote za AFP, ikionyesha hatari za usalama.
|
|
- **afp-serverinfo**: Hutoa taarifa za kina kuhusu seva ya AFP.
|
|
- **afp-showmount**: Inaorodhesha hisa za AFP zilizopo pamoja na ACL zao husika.
|
|
|
|
### [**Brute Force**](../generic-methodologies-and-resources/brute-force.md#afp)
|
|
|
|
<details>
|
|
|
|
<summary><strong>Jifunze kuhusu kudukua AWS kutoka sifuri hadi shujaa na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>
|
|
|
|
Njia nyingine za kusaidia HackTricks:
|
|
|
|
* Ikiwa unataka kuona **kampuni yako ikionekana kwenye HackTricks** au **kupakua HackTricks kwa muundo wa PDF** Angalia [**MPANGO WA KUJIUNGA**](https://github.com/sponsors/carlospolop)!
|
|
* Pata [**swag rasmi wa PEASS & HackTricks**](https://peass.creator-spring.com)
|
|
* Gundua [**The PEASS Family**](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [**NFTs**](https://opensea.io/collection/the-peass-family) za kipekee
|
|
* **Jiunge na** 💬 [**Kikundi cha Discord**](https://discord.gg/hRep4RUj7f) au [**kikundi cha telegram**](https://t.me/peass) au **tufuate** kwenye **Twitter** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks_live)**.**
|
|
* **Shiriki mbinu zako za kudukua kwa kuwasilisha PRs kwenye** [**HackTricks**](https://github.com/carlospolop/hacktricks) na [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) repos za github.
|
|
|
|
</details>
|