Footprinting - IMAP/POP3

Is solved!!!

I tried login into a user account… using the command LOGIN username password
it refused…
i finally logged in using the command TAG LOGIN username password

1 Like

Hey all, how did you locate the login credentials for the last question to enable you to login to the IMAP server?

follow this list
https://donsutherland.org/crib/imap

1 Like

Thanks, but I’ve already tried that list from previous post suggestions, hence the question on where to find creds…

I get one of the following error messages:

A1 NO [AUTHENTICATIONFAILED] Authentication failed.

or

A1 BAD Error in IMAP command received by server.

Are we expected to bruteforce the credentials using the “A1 LOGIN username password” command?

Apologies if it’s obvious, but I’ve hit a brick wall with this currently :frowning:

Doesn’t it tell you which creds to use at the end of that section? It was a while ago that I did it but I just re-read that section and the creds are there on the page…

1 Like

Thanks so much! Completed - And now off to Specsavers to have my eyesight tested!!! :slight_smile:

:rofl::rofl::rofl::rofl::+1::+1:

I had a hard time on this section. For those of you that are stuck on the last two questions - Make sure you are using openssl or ncat to connect to the target. once you are connect use the commands to login(the login is given to you) and list the mailboxes and you will be on you way :slight_smile:

1 Like