iscsiadm
For messing around with ISCSI stuff. These sites were super helpful in researching this:
- https://www.directdefense.com/compromising-a-backup-system-by-iscsi-interface-during-a-routine-penetration-test/
- https://www.pentestpartners.com/security-blog/an-interesting-route-to-domain-admin-iscsi/
Installing
sudo apt install open-iscsi
Finding ISCSI
nmap -iL targets.txt --script iscsi-info
Look specifically for output like this:
<snip>
3260/tcp open iscsi
| iscsi-info:
| some.identifier.that.looks.cool:iscsi.corp.11223:
| address: 1.2.3.4:3260,1
| authentication: NOT required
Discover targets
sudo iscsiadm -m discovery -t st -p 1.2.3.4:3260
sudo ls /etc/iscsi/send_targets