簡介
NMap,也就是Network Mapper,是Linux下的網絡掃描和嗅探東西包。文中均已Linux下Nmap
5.21為主,其他版本雷同。
成果包羅:
一是探測一組主機是否在線;
二是掃描 主機端口,嗅探所提供的網絡處事;
三是揣度主機所用的操縱系統 [separator]
2.參數說明
1. 名目:nmap [Scan Type(s)] [Options]
{target specification}
(1)-sL:我們可以稱之為蠻力掃描,它將方針ip一個一個掃描已往,期待回應,東莞電信服務器
河南電信服務器,不推薦
(2)-sP:回收ping模式掃描網段,arp獲取MAC地點,結果不大抱負
(3)-PS:探測指定方針開放的端口,在方針開防火墻環(huán)境結果欠好
(4)-sS:SYN掃描,即半開放掃描,不是一個完全的TCP鏈接,執(zhí)行效率高,隱蔽性較好。
(5)-sU:指定方針UDP端口開放環(huán)境
(6)-O/-A:探測處事器操縱系統范例
3.操縱應用
(1)查察該網段存在的主機,參數-sP (Linux區(qū)分巨細寫,這里P大寫)
1. sudo nmap -sP 192.168.8.0/24
說明:192.168.8.0是一個網段,24是子網頁碼位數,c類,返回功效如下:
1. Nmap scan report for bogon
(192.168.8.1)
2. Host is up (0.0036s latency).
3. MAC Address: 00:1F:33:BA:9A:EE
(Netgear) # 網關
4. Nmap scan report for bogon
(192.168.8.3)
5. Host is up (0.0069s latency).
6. MAC Address: 78:E4:00:27:3D:38
(Unknown) # 未知,一臺裝win7
7. Nmap scan report for bogon
(192.168.8.6)
8. Host is up (0.0089s latency).
9. MAC Address: 00:0D:56:FB:13:12 (Dell Pcba
Test) # dell主機,win2k3處事器
10. Nmap scan report for xiaoc-Studio-1458
(192.168.8.8)
11. Host is up.
12. Nmap scan report for bogon (192.168.8.9)
13. Host is up (0.032s latency).
14. MAC Address: B4:82:FE:BC:55:DE
(Unknown) # 未知,一臺裝winxp
15. Nmap scan report for bogon (192.168.8.10)
16. Host is up (0.077s latency).
17. MAC Address: 00:0D:56:FA:E9:C0 (Dell Pcba Test) #
dell主機,我用ubuntu搭建的
18. Nmap done: 256 IP addresses (6 hosts up) scanned in
5.13 seconds
總共開放了6臺主機。
(2)查察自身打初步口
1. sudo nmap -sTU localhost
返回功效如下:
1. rDNS record for 127.0.0.1:
localhost.localdomain
2. Not shown: 1989 closed ports
3.
PORT
STATE
SERVICE
4. 22/tcp
open
ssh
# ssh長途打點
5. 80/tcp
open
http
# nginx的web處事
6. 139/tcp
open
netbios-ssn # 局域網共享
7. 445/tcp
open
microsoft-ds # 與window共享
8. 631/tcp
open
ipp
9. 3306/tcp
open
mysql
# mysql處事
10. 9000/tcp
open
cslistener # fcgi處事
11. 68/udp open|filtered
dhcpc
12. 137/udp
open
netbios-ns
13. 138/udp open|filtered netbios-dgm
14. 5353/udp open|filtered zeroconf
本機開放端口列表與對應處事列表
(3) 探測指定方針開放端口
1. sudo nmap -PS 192.168.8.10
返回功效: