# IMAP Pentesting

## IMAP (Internet Message Access Protocol) Pentesting <a href="#imap-internet-message-access-protocol-pentesting" id="imap-internet-message-access-protocol-pentesting"></a>

IMAP is an internet standard protocol used by email clients. Default ports are 143, 993.

### Enumeration <a href="#enumeration" id="enumeration"></a>

```shellscript
nmap --script imap-capabilities -p 143 <target-ip>
```

#### Banner Grabbing <a href="#banner-grabbing" id="banner-grabbing"></a>

```shellscript
nc -nv <target-ip> 143
openssl s_client -connect <IP>:993 -quiet
```

### Connect <a href="#connect" id="connect"></a>

```shellscript
telnet 10.0.0.1 143
```

### Commands <a href="#commands" id="commands"></a>

```shellscript
# Login
a1 login "<username>" "<password>"

# Logout
a1 logout

# Close mailbox
a1 close
```