[1] Para encontrar o FTP aberto, podemos usar o Shodan Search Engine com esta porta idiota
"230 login success":"21"
Escolhemos algum FTP e tentamos fazer o login. Após o login bem-sucedido, escreva "ls" para ver os arquivos e diretórios.
[2] Para verificar algum FTP, precisamos usar o NMAP
When attacking or targeting a system, one of the initial steps that an attacker takes is to perform a scan of the target. This scan gives the attacker information such as open ports and running services. We used Nmap to scan the ubuntu machine that we just configured. We can see that the Nmap was able to identify that the FTP service was functional on the target machine and it also takes another step into enumeration and informs the attacker that the FTP service has Anonymous Login Enabled.
Comando: nmap -A IP
https://external-content.duckduckgo.com … -01-43.png
E agora vemos a linha: ftp-anon: Anonymous FTP login Allowed (FTP code 230)
Agora tente fazer o login com o nome de usuário: anonymous | passe: anônimo