Note
IMAP usually runs on port
163
(unencrypted) and encrypted in alternatives like993
*POP3 usually runs on port110
(unencrypted) and encrypted in alternatives like995
*
Nmap scan
nmap 10.129.14.128 -sV -p110,143,993,995 -sC
HTB Cheatsheet
Command | Description |
---|---|
curl -k 'imaps://<FQDN/IP>' --user <user>:<password> | Log in to the IMAPS service using cURL. |
openssl s_client -connect <FQDN/IP>:imaps | Connect to the IMAPS service. |
openssl s_client -connect <FQDN/IP>:pop3s | Connect to the POP3s service. |
curl -k --user robin:robin "imaps://10.129.220.71/DEV.DEPARTMENT.INT;UID=1" | Extract a message from a specific share on IMAP. |
IMAP Commands
Command | Description |
---|---|
1 LOGIN username password | Userโs login. |
1 LIST "" * | Lists all directories. |
1 CREATE "INBOX" | Creates a mailbox with a specified name. |
1 DELETE "INBOX" | Deletes a mailbox. |
1 RENAME "ToRead" "Important" | Renames a mailbox. |
1 LSUB "" * | Returns a subset of names from the set of names that the User has declared as beingย active ย orย subscribed . |
1 SELECT INBOX | Selects a mailbox so that messages in the mailbox can be accessed. |
1 UNSELECT INBOX | Exits the selected mailbox. |
1 FETCH <ID> all | Retrieves data associated with a message in the mailbox. |
1 CLOSE | Removes all messages with theย Deleted ย flag set. |
1 LOGOUT | Closes the connection with the IMAP server. |
POP3 Commands
Command | Description |
---|---|
USER username | Identifies the user. |
PASS password | Authentication of the user using its password. |
STAT | Requests the number of saved emails from the server. |
LIST | Requests from the server the number and size of all emails. |
RETR id | Requests the server to deliver the requested email by ID. |
DELE id | Requests the server to delete the requested email by ID. |
CAPA | Requests the server to display the server capabilities. |
RSET | Requests the server to reset the transmitted information. |
QUIT | Closes the connection with the POP3 server. |
You should check Footprinting Theory ๐ to get further knowledge.