nmap的应用
操作环境:CentOS release 6.9 (Final)
成都创新互联主营当涂网站建设的网络公司,主营网站建设方案,手机APP定制开发,当涂h5小程序设计搭建,当涂网站营销推广欢迎当涂等地区企业咨询
[root@sky9890 ~]# /etc/init.d/iptables start
iptables: No config file. [WARNING]
[root@sky9890 ~]# /etc/init.d/iptables save #保存规则文件
iptables: Saving firewall rules to /etc/sysconfig/iptables:[ OK ]
[root@sky9890 ~]# /etc/init.d/iptables start #启动防火墙
iptables: Applying firewall rules: [ OK ]
[root@sky9890 ~]# nmap
-bash: nmap: command not found
[root@sky9890 ~]# yum install nmap
Loaded plugins: fastestmirror
Setting up Install Process
Loading mirror speeds from cached hostfile
Resolving Dependencies
--> Running transaction check
---> Package nmap.x86_64 2:5.51-6.el6 will be installed
--> Finished Dependency Resolution
Dependencies Resolved
Installing:
nmap x86_64 2:5.51-6.el6 base 2.8 M
Transaction Summary
=======================================================
Install 1 Package(s)
Total download size: 2.8 M
Installed size: 9.7 M
Is this ok [y/N]: y
Downloading Packages:
nmap-5.51-6.el6.x86_64.rpm
……
Installed:
nmap.x86_64 2:5.51-6.el6
Complete!
nmap有三个作用:
一是探测一组主机是否在线;
二是扫描主机端口,嗅探所提供的网络服务;
三是可以推断主机所用的操作系统。
[root@sky9890 ~]# nmap 113.195.210.151 -p 22 #查看连接服务端的22端口是否处于开通状态
Starting Nmap 5.51 ( http://nmap.org ) at 2018-03-31 16:54 CST
Nmap scan report for 151.210.195.113.adsl-pool.jx.chinaunicom.com (113.195.210.151)
Host is up (0.020s latency).
PORT STATE SERVICE
22/tcp open ssh
Nmap done: 1 IP address (1 host up) scanned in 0.20 seconds
[root@sky9890 ~]# nmap 114.55.53.205 #扫描主机开放的端口
Starting Nmap 5.51 ( http://nmap.org ) at 2018-03-31 17:24 CST
Nmap scan report for 114.55.53.205
Host is up (0.0079s latency).
Not shown: 984 closed ports
PORT STATE SERVICE
25/tcp filtered smtp
42/tcp filtered nameserver
80/tcp open http
135/tcp filtered msrpc
139/tcp filtered netbios-ssn
445/tcp filtered microsoft-ds
3306/tcp open MySQL
3389/tcp open ms-term-serv
7000/tcp open afs3-fileserver
8000/tcp open http-alt
8082/tcp open blackice-alerts
10001/tcp open scp-config
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
Nmap done: 1 IP address (1 host up) scanned in 1.30 seconds
[root@sky9890 ~]# nmap -O 114.55.53.205 #探测目标主机的操作系统:Windows
Starting Nmap 5.51 ( http://nmap.org ) at 2018-03-31 17:26 CST
Nmap scan report for 114.55.53.205
Host is up (0.0059s latency).
Not shown: 984 closed ports
PORT STATE SERVICE
25/tcp filtered smtp
42/tcp filtered nameserver
80/tcp open http
135/tcp filtered msrpc
139/tcp filtered netbios-ssn
445/tcp filtered microsoft-ds
3306/tcp open mysql
3389/tcp open ms-term-serv
7000/tcp open afs3-fileserver
8000/tcp open http-alt
8082/tcp open blackice-alerts
10001/tcp open scp-config
49152/tcp open unknown
49153/tcp open unknown
49154/tcp open unknown
49155/tcp open unknown
Device type: general purpose
Running (JUST GUESSING): Microsoft Windows Vista|7|2008|Longhorn (97%)
Aggressive OS guesses: Microsoft Windows Vista Enterprise (97%), Microsoft Windows 7 Ultimate (95%), Microsoft Windows Vista Home Premium SP1, Windows 7, or Server 2008 (94%), Microsoft Windows 7 Professional (93%), Microsoft Windows Vista (92%), Microsoft Windows Vista SP0 - SP2, Server 2008, or Windows 7 Ultimate (92%), Microsoft Windows Server 2008 R2 (92%), Microsoft Windows 7 (91%), Microsoft Windows Vista SP1 (91%), Microsoft Windows Server 2008 (90%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 9 hops
OS detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 6.80 seconds
[root@sky9890 ~]# nmap -O 113.195.210.151 #探测目标主机的操作系统:Linux
Starting Nmap 5.51 ( http://nmap.org ) at 2018-03-31 17:18 CST
Nmap scan report for 151.210.195.113.adsl-pool.jx.chinaunicom.com (113.195.210.151)
Host is up (0.021s latency).
Not shown: 995 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
3306/tcp closed mysql
8080/tcp closed http-proxy
9090/tcp closed zeus-admin
Device type: general purpose|WAP|specialized
Running (JUST GUESSING): Linux 2.6.X|2.4.X (89%), Netgear embedded (89%), Linksys Linux 2.4.X (87%), Asus Linux 2.6.X (87%), Crestron 2-Series (86%)
Aggressive OS guesses: Linux 2.6.31 - 2.6.34 (89%), Linux 2.6.9 - 2.6.27 (89%), Netgear DG834G WAP (89%), Linux 2.6.22 (Fedora Core 6) (88%), Linux 2.6.32 (88%), Linux 2.6.34 (88%), OpenWrt White Russian 0.9 (Linux 2.4.30) (87%), OpenWrt 0.9 - 7.09 (Linux 2.4.30 - 2.4.34) (87%), OpenWrt Kamikaze 7.09 (Linux 2.6.22) (87%), Linux 2.6.24 - 2.6.35 (87%)
No exact OS matches for host (test conditions non-ideal).
OS detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 9.32 seconds
[root@sky9890 ~]# nmap -A 114.55.53.205
Starting Nmap 5.51 ( http://nmap.org ) at 2018-03-31 17:28 CST
Stats: 0:01:33 elapsed; 0 hosts completed (1 up), 1 undergoing Service Scan
Service scan Timing: About 90.91% done; ETC: 17:29 (0:00:09 remaining)
Nmap scan report for 114.55.53.205
Host is up (0.0057s latency).
Not shown: 984 closed ports
PORT STATE SERVICE VERSION
25/tcp filtered smtp
42/tcp filtered nameserver
80/tcp open http Apache httpd 2.4.10 ((Win32) OpenSSL/0.9.8zb PHP/5.3.29)
| http-methods: Potentially risky methods: TRACE
|_See http://nmap.org/nsedoc/scripts/http-methods.html
|_http-title: 403 Forbidden
135/tcp filtered msrpc
139/tcp filtered netbios-ssn
445/tcp filtered microsoft-ds
3306/tcp open mysql MySQL (unauthorized)
3389/tcp open microsoft-rdp Microsoft Terminal Service
7000/tcp open tcpwrapped
8000/tcp open http-alt?
|_http-methods: No Allow or Public header in OPTIONS response (status code 302)
|_http-title: Requested resource was http://114.55.53.205:8000/accounts/login?next=/ and no page was returned.
8082/tcp open http Octoshape P2P streaming web service
|_http-methods: No Allow or Public header in OPTIONS response (status code 404)
10001/tcp open scp-config?
49152/tcp open msrpc Microsoft Windows RPC
49153/tcp open msrpc Microsoft Windows RPC
49154/tcp open msrpc Microsoft Windows RPC
49155/tcp open msrpc Microsoft Windows RPC
2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port8000-TCP:V=5.51%I=7%D=3/31%Time=5ABF54A8%P=x86_64-redhat-linux-gnu%
SF:x01\0\(\0\0\0\x0046e7c680871c5fe0ac4581b5c3d558e593bba4b4");
Device type: general purpose
Running (JUST GUESSING): Microsoft Windows Vista|7|2008|Longhorn (97%)
Aggressive OS guesses: Microsoft Windows Vista Enterprise (97%), Microsoft Windows 7 Ultimate (95%), Microsoft Windows Vista Home Premium SP1, Windows 7, or Server 2008 (94%), Microsoft Windows 7 Professional (93%), Microsoft Windows Vista (92%), Microsoft Windows Vista SP0 - SP2, Server 2008, or Windows 7 Ultimate (92%), Microsoft Windows Server 2008 R2 (92%), Microsoft Windows 7 (91%), Microsoft Windows Vista SP1 (91%), Microsoft Windows Server 2008 (90%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 10 hops
Service Info: OS: Windows
TRACEROUTE (using port 1723/tcp)
HOP RTT ADDRESS
1 ...
2 6.09 ms 11.218.123.13
3 7.29 ms 11.218.122.178
4 4.70 ms 11.217.0.26
5 4.11 ms 106.11.75.1
6 6.74 ms 140.205.24.21
7 4.95 ms 116.251.124.109
8 10.98 ms 11.182.220.17
9 13.50 ms 11.220.129.54
10 5.36 ms 114.55.53.205
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 127.84 seconds
名称栏目:nmap的应用
浏览地址:http://myzitong.com/article/jhdioo.html