Scanner VMWare Auxiliary Modules

From Metasploit Unleashed
Jump to: navigation, search


This module will log into the Web API of VMWare and try to enumerate all the user accounts. If the VMware instance is connected to one or more domains, it will try to enumerate domain users as well.

msf > use auxiliary/scanner/vmware/vmware_enum_users
msf  auxiliary(vmware_enum_users) > show options

Module options (auxiliary/scanner/vmware/vmware_enum_users):

   Name      Current Setting         Required  Description
   ----      ---------------         --------  -----------
   PASSWORD  vmwareESXpassword       yes       The password to Authenticate with.
   Proxies                           no        Use a proxy chain
   RHOSTS            yes       The target address range or CIDR identifier
   RPORT     443                     yes       The target port
   THREADS   1                       yes       The number of concurrent threads
   USERNAME  root                    yes       The username to Authenticate with.
   VHOST                             no        HTTP server virtual host

msf  auxiliary(vmware_enum_users) > 

Running this module will output a nice list of all the groups and users on the server.

msf  auxiliary(vmware_enum_users) > run

[+] Groups for server

 Name        Description
 ----        -----------

[+] Users for server

 Name        Description
 ----        -----------
 hacker      hacker
 daemon      daemon
 dcui        DCUI User
 nfsnobody   Anonymous NFS User
 nobody      Nobody
 root        Administrator
 vimuser     vimuser

[*] Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed
msf  auxiliary(vmware_enum_users) > 

Module Reference > Auxiliary Modules > Scanner Modules > Scanner VMWare Auxiliary Modules