MONITORING 2301/tcp 2381/tcp

HP/Compaq Insight Manager

aka hp-sim, insight-manager

Legacy HP server-management web agents on 2301/2381. Old builds ship default credentials and have a long list of disclosure/RCE CVEs — a quick win on dated HP hardware.

monitoring hp legacy

Ports

Port	Proto	Notes
`2301`	tcp	Insight Manager (HTTP)
`2381`	tcp	Insight Manager (HTTPS)

Fingerprint

'System Management Homepage' / 'Compaq' web UI
HP banner on 2301/2381

Default / weak creds

administrator / (blank), and other shipped defaults

Exploitation primitives

Default credentials into the System Management Homepage
Dated versions carry multiple disclosure/XSS/RCE CVEs — version-check first
Reveals hardware/firmware inventory useful for further targeting

Overview

HP/Compaq Insight Manager on 2301/2381 manages older HP/Compaq servers. On dated kit it’s default creds and a CVE buffet.

Enumeration

Hit the management homepage:

curl -sk https://<TARGET>:2381/ | grep -i version

Try default creds, then map the version to known CVEs.

Hardening

Update or retire the agent, change default credentials, and restrict the management ports to an admin network.

References

HackTricks Insight Manager