Olá pessoal, estou com algumas dúvidas refentes a análise do nmap e zenmap.
Primeiro segue a análise do meu modem Dsl 500B (Dlink).
nmap -T Aggressive -A -v 10.1.1.1
tarting Nmap 4.53 ( Insecure.Org - Nmap Free Security Scanner, Tools & Hacking resources ) at 2010-06-25 18:13 BRT
Initiating Ping Scan at 18:13
Scanning 10.1.1.1 [1 port]
Completed Ping Scan at 18:13, 0.00s elapsed (1 total hosts)
Initiating Parallel DNS resolution of 1 host. at 18:13
Completed Parallel DNS resolution of 1 host. at 18:13, 6.54s elapsed
Initiating Connect Scan at 18:13
Scanning 10.1.1.1 [1714 ports]
Discovered open port 80/tcp on 10.1.1.1
Discovered open port 21/tcp on 10.1.1.1
Discovered open port 23/tcp on 10.1.1.1
Completed Connect Scan at 18:13, 3.56s elapsed (1714 total ports)
Initiating Service scan at 18:13
Scanning 3 services on 10.1.1.1
Completed Service scan at 18:15, 111.69s elapsed (3 services on 1 host)
SCRIPT ENGINE: Initiating script scanning.
Host 10.1.1.1 appears to be up ... good.
Interesting ports on 10.1.1.1:
Not shown: 1711 closed ports
PORT STATE SERVICE VERSION
21/tcp open ftp Belkin/BT broadband router ftp firmware update
23/tcp open telnet?
80/tcp open http?
2 services unrecognized despite returning data.
Por que 23/tcp open telnet?
80/tcp open http?
2 services unrecognized despite returning data.
A segunda análise é do meu Wireless Router:
root@BrTelecom:/home/Admin# nmap -sV 192.168.0.254
Starting Nmap 4.53 ( Insecure.Org - Nmap Free Security Scanner, Tools & Hacking resources ) at 2010-06-23 20:14 BRT
Interesting ports on 192.168.0.254:
Not shown: 1712 closed ports
PORT STATE SERVICE VERSION
80/tcp open tcpwrapped
515/tcp open printer?
1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at http://www.insecure.org/cgi-bin/servi cefp-submit.cgi :
SF-Port515-TCP:V=4.53%I=7%D=6/23%Time=4C22956E%P=i686-pc-linux-gnu%r(GetRe
SF:quest,1,"\x01");
MAC Address: 00:21:91:6A:AB:36 (Unknown)
O que é TcpWrapped (embrulhado?)
E porque 515/tcp open printer?
root@BrTelecom:/home/Admin# fuser -u -v 80/tcp
COMANDO DE ACESSO DO USUÁRIO PID
80/tcp: root 5319 F.... (root)apache2
www-data 5322 F.... (www-data)apache2
www-data 5326 F.... (www-data)apache2
root@BrTelecom:/home/Admin# fuser -u -v 515/tcp
root@BrTelecom:/home/Admin# fuser -u -v 515/tcp
root@BrTelecom:/home/Admin# fuser -u -v 80/tcp
COMANDO DE ACESSO DO USUÁRIO PID
80/tcp: root 5319 F.... (root)apache2
www-data 5322 F.... (www-data)apache2
www-data 5326 F.... (www-data)apache2
Por que apache2?
Desde já agradeço,
César.
-
25-06-2010, 18:20 #1
- Ingresso
- Jun 2010
- Localização
- Grande Florianópolis - São José
- Posts
- 2
Dúvidas refentes a análise do nmap
Citação