I just wanna share about enumeration which maybe overlooked most of the time. SNMP (port 161) is left open due to some reason either caused by missed configuration or intended.
Simple Network Management Protocol (SNMP) is an application–layer protocol defined by the Internet Architecture Board (IAB) in RFC1157 for exchanging management information between network devices. It is a part of Transmission Control Protocol⁄Internet Protocol (TCP⁄IP) protocol suite.
Getting the IPv6, most of the admin sometimes harden the IPv4 but forgot the IPv6. this is the MiB iso.188.8.131.52.184.108.40.206.5.2.16. With the specified MiB you can query the IPv6 information
snmpwalk -v2c -c public 10.129.1.179 iso.220.127.116.11.18.104.22.168.5.2.16
IP-MIB::ipAddressPrefix.ipv6.”00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:01″ = OID: IP-MIB::ipAddressPrefixOrigin.1.ipv6.”00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:01″.128
IP-MIB::ipAddressPrefix.ipv6.”de:ad:be:ef:00:00:00:00:02:50:56:ff:fe:b9:bb:8e” = OID: IP-MIB::ipAddressPrefixOrigin.2.ipv6.”de:ad:be:ef:00:00:00:00:00:00:00:00:00:00:00:00″.64
IP-MIB::ipAddressPrefix.ipv6.”fe:80:00:00:00:00:00:00:02:50:56:ff:fe:b9:bb:8e” = OID: IP-MIB::ipAddressPrefixOrigin.2.ipv6.”fe:80:00:00:00:00:00:00:00:00:00:00:00:00:00:00″.64
Getting the IPv6 using pre-scripted. There is one tools that is very nice which can be used that can be downloaded https://github.com/trickster0/Enyx.git
python2 enyx.py 2c public 10.129.1.179
The above tools would help your enumeration alot easier and faster.