🛡️Fortinet

Ports

Scan for ports

nmap -sV -sC -iL targets-fortinet.txt -v -p514,541,666,701,1003,8008,8010,8888,8890,9443,10443,13000,13001,13002,13003,13004,13005,13006,13007,13030,13031,13032,13033,13034,13035,13036,13037,13038,13039 -oN fortigate

443 - Fortinet

Default credentials :

admin:<empty>

541 - Fortinet SSL/VPN

# INTERACT
openssl s_client -connect $ip:541

# or nc

nc $ip 541

10443/8443 - Fortigate SSL/VPN

Check for CVE

GitHub - BishopFox/CVE-2023-27997-check: Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timingGitHub

git clone https://github.com/BishopFox/CVE-2023-27997-check
cd CVE-2023-27997-check
python3 -m venv venv
source venv/bin/activate
python3 -m pip install -r requirements.txt

# usage 
python3 CVE-2023-27997-check.py $ip $port

PreviousCUPS NextCCTV / IP Cameras

Last updated 1 year ago

Was this helpful?