- port:21
- Windows IIS FTP:
- check for anonymous access with nmap script ftp-anon or user anonymous
- brute force with hydra
- if ftp accessible using
ftp <ip> <port>
, upload .asp webshell for remote access - these services utilize actual user accounts on windows os