ONESIXTYONE
This is a network-scanning tool designed to enumerate SNMP community strings by attempting many candidate names against devices. It is essentially a brute‑force/wordlist approach to discover which community strings a device will accept. Because community strings are arbitrary labels set by administrators and can be restricted to specific source IPs, finding valid strings can require extensive probing and time; the tool automates that discovery at scale so an operator can quickly learn which devices accept common or weak community names. It is useful for auditing and recovery such as validating that devices don't use default or guessable community strings. For defenders, the relevant takeaways are to migrate to SNMPv3 where possible, avoid default community strings, restrict SNMP access by ACLs and source IP, and monitor for repeated SNMP access attempts in logs to detect unauthorized enumeration.
root@oco:~$ onesixtyone -c dict.txt 10.129.42.254
Scanning 1 hosts, 51 communities
10.129.42.254 [public] Linux gs-svcscan 5.4.0-66-generic #74-Ubuntu SMP Wed Jan 27 22:54:38 UTC 2021 x86_64
Last updated