ref:http://www.netadmin.com.tw/article_content.aspx?sn=1312030002
Tool:
1.nmap
2.ncat
3.nping
4.xnmap
5.ndiff
xxx.xxx.xxx.3 /usr/share/nmap/scripts
nmap -sS <ip>
nmap -p80 www.xxx.xxx.tw
nmap --script "http-*"
nmap --script=http-backup-finder 127.0.01
nmap -p80 -O xxx.xxx.xxx.17 查看OS version
nmap -p80 -O xxx.xxx.xxx.1/24 |grep Micro |wc
nmap -p80 -T4 -A xxx.xxx.xxx.17
nmap -p80 -T4 -A xxx.xxx.xxx.1/24
[root@logdb ~]# nmap -p80 -T4 -A 203.68.0.17
Starting Nmap 5.21 ( http://nmap.org ) at 2012-04-20 13:30 CST
Nmap scan report for cmp.nkhc.edu.tw (203.68.0.17)
Host is up (0.00084s latency).
PORT STATE SERVICE VERSION
80/tcp open http Microsoft IIS webserver 6.0
|_http-favicon:
|_html-title: Site doesn't have a title (text/html).
MAC Address: 3C:D9:2B:0C:C0:CA (Unknown)
Warning: OSScan results may be unreliable because we could not find at least 1
pen and 1 closed port
Device type: general purpose
Running: Microsoft Windows 2003|XP
OS details: Microsoft Windows Server 2003 SP2, Microsoft Windows XP SP2 or Serv
r 2003 SP2, Microsoft Windows XP SP2
Network Distance: 1 hop
Service Info: OS: Windows
HOP RTT ADDRESS
1 0.85 ms cmp.nkhc.edu.tw (203.68.0.17)
OS and Service detection performed. Please report any incorrect results at http
//nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 8.51 seconds
沒有留言:
張貼留言