Snookums_RPC

RPC

---

Nmap discovered a RPC(Portmapper) service on the target port 111 The running service is 2-4 (RPC #100000)

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/snookums]
└─$ nmap -sSUC -p111 $IP
Starting Nmap 7.95 ( https://nmap.org ) at 2025-03-23 21:03 CET
Nmap scan report for 192.168.132.58
Host is up (0.020s latency).
 
PORT    STATE         SERVICE
111/tcp open          rpcbind
| rpcinfo: 
|   program version    port/proto  service
|   100000  2,3,4        111/tcp   rpcbind
|   100000  2,3,4        111/udp   rpcbind
|   100000  3,4          111/tcp6  rpcbind
|_  100000  3,4          111/udp6  rpcbind
111/udp open|filtered rpcbind
| rpcinfo: 
|   program version    port/proto  service
|   100000  2,3,4        111/tcp   rpcbind
|   100000  2,3,4        111/udp   rpcbind
|   100000  3,4          111/tcp6  rpcbind
|_  100000  3,4          111/udp6  rpcbind
 
Nmap done: 1 IP address (1 host up) scanned in 14.72 seconds

N/A

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/snookums]
└─$ rpcinfo $IP
   program version netid     address                service    owner
    100000    4    tcp6      ::.0.111               portmapper superuser
    100000    3    tcp6      ::.0.111               portmapper superuser
    100000    4    udp6      ::.0.111               portmapper superuser
    100000    3    udp6      ::.0.111               portmapper superuser
    100000    4    tcp       0.0.0.0.0.111          portmapper superuser
    100000    3    tcp       0.0.0.0.0.111          portmapper superuser
    100000    2    tcp       0.0.0.0.0.111          portmapper superuser
    100000    4    udp       0.0.0.0.0.111          portmapper superuser
    100000    3    udp       0.0.0.0.0.111          portmapper superuser
    100000    2    udp       0.0.0.0.0.111          portmapper superuser
    100000    4    local     /var/run/rpcbind.sock  portmapper superuser
    100000    3    local     /var/run/rpcbind.sock  portmapper superuser

It doesn’t appear to be anything else other than the RPC service itself