# iscsiadm

For messing around with ISCSI stuff.  These sites were super helpful in researching this:

* [https://www.directdefense.com/compromising-a-backup-system-by-iscsi-interface-during-a-routine-penetration-test/](https://www.directdefense.com/compromising-a-backup-system-by-iscsi-interface-during-a-routine-penetration-test/)
* [https://www.pentestpartners.com/security-blog/an-interesting-route-to-domain-admin-iscsi/](https://www.pentestpartners.com/security-blog/an-interesting-route-to-domain-admin-iscsi/)

## Installing
```
sudo apt install open-iscsi
```

## Finding ISCSI 
```
nmap -iL targets.txt --script iscsi-info
```

Look specifically for output like this:

```
<snip>
3260/tcp open iscsi
| iscsi-info:
|  some.identifier.that.looks.cool:iscsi.corp.11223:
|  address: 1.2.3.4:3260,1
|  authentication: NOT required
```

## Discover targets
```
sudo iscsiadm -m discovery -t st -p 1.2.3.4:3260
sudo ls /etc/iscsi/send_targets
```