{"id":527,"date":"2018-09-09T12:20:32","date_gmt":"2018-09-09T12:20:32","guid":{"rendered":"https:\/\/d1m0.com\/?p=527"},"modified":"2018-09-09T12:20:32","modified_gmt":"2018-09-09T12:20:32","slug":"nmap-scaning-baiscs-pt1","status":"publish","type":"post","link":"https:\/\/d1m0.com\/?p=527","title":{"rendered":"Nmap scaning baiscs pt1"},"content":{"rendered":"

Open Port Scanning and OS Detection
\n
\nPing scan on an IP to determine host using the following command:<\/strong><\/p>\n

nmap -sP 95.111.13.11<\/code><\/p>\n

Open Port Scanning and OS Detection<\/code><\/p>\n

Start a SYN scan with OS detection using the following command:<\/p>\n

nmap -sS 95.111.13.11 -O<\/code><\/p>\n

Nmap scan report for d1m0.com (95.111.13.111)
\nHost is up (0.00097s latency).
\nNot shown: 992 closed ports
\nPORT STATE SERVICE
\n25\/tcp open smtp
\n53\/tcp open domain
\n80\/tcp open http
\n143\/tcp open imap
\n465\/tcp open smtps
\n993\/tcp open imaps
\n4444\/tcp open krb524
\n8181\/tcp open intermapper<\/p>\n

Start an open port scan with version detection using the command:<\/strong><\/p>\n

nmap -sV 95.111.13.111 -A<\/code><\/p>\n

Nmap scan report for d1m0.com (95.111.13.111)
\nHost is up (0.00089s latency).
\nNot shown: 992 closed ports
\nPORT STATE SERVICE VERSION
\n25\/tcp open smtp Postfix smtpd
\n|_smtp-commands: mail.d1m0.com, PIPELINING, SIZE 4194304, VRFY, ETRN, STARTTLS, ENHANCEDSTATUSCODES, 8BITMIME,
\n| ssl-cert: Subject: commonName=mail.d1m0.com\/countryName=BG
\n| Subject Alternative Name: DNS:mail.d1m0.com
\n| Not valid before: 2017-05-09T19:56:41
\n|_Not valid after: 2019-05-09T12:06:00
\n|_ssl-date: TLS randomness does not represent time
\n53\/tcp open domain ISC BIND 9.9.5 (Debian Linux 8.0 (Jessie))
\n| dns-nsid:
\n|_ bind.version: 9.9.5-9+deb8u15-Debian
\n80\/tcp open http OpenWrt admin httpd (rejected RFC1918 address)
\n|_http-title: Site doesn’t have a title (text\/html).
\n143\/tcp open imap Dovecot imapd
\n|_imap-capabilities: STARTTLS LOGIN-REFERRALS AUTH=PLAIN IMAP4rev1 listed more IDLE SASL-IR have Pre-login AUTH=LOGINA0001 post-login ID LITERAL+ ENABLE capabilities OK
\n| ssl-cert: Subject: commonName=mail.d1m0.com\/countryName=BG
\n| Subject Alternative Name: DNS:mail.d1m0.com
\n| Not valid before: 2017-05-09T19:56:41
\n|_Not valid after: 2019-05-09T12:06:00
\n|_ssl-date: TLS randomness does not represent time
\n465\/tcp open ssl\/smtp Postfix smtpd
\n|_smtp-commands: mail.d1m0.com, PIPELINING, SIZE 4194304, VRFY, ETRN, AUTH PLAIN LOGIN, ENHANCEDSTATUSCODES, 8BITMIME,
\n| ssl-cert: Subject: commonName=mail.d1m0.com\/countryName=BG
\n| Subject Alternative Name: DNS:mail.d1m0.com
\n| Not valid before: 2017-05-09T19:56:41
\n|_Not valid after: 2019-05-09T12:06:00
\n|_ssl-date: TLS randomness does not represent time
\n993\/tcp open ssl\/imap Dovecot imapd
\n|_imap-capabilities: IDLE ID ENABLE more OK AUTH=PLAIN have AUTH=LOGINA0001 IMAP4rev1 listed post-login SASL-IR LITERAL+ Pre-login capabilities LOGIN-REFERRALS
\n| ssl-cert: Subject: commonName=mail.d1m0.com\/countryName=BG
\n| Subject Alternative Name: DNS:mail.d1m0.com
\n| Not valid before: 2017-05-09T19:56:41
\n|_Not valid after: 2019-05-09T12:06:00
\n|_ssl-date: TLS randomness does not represent time
\n4444\/tcp open ssh OpenSSH 7.2p2 Ubuntu 4ubuntu2.4 (Ubuntu Linux; protocol 2.0)
\n| ssh-hostkey:
\n| 2048 b4:20:d2:bb:b4:64:be:80:6e:44:39:63:86:4a:3f:fe (RSA)
\n| 256 d0:39:21:89:b0:73:88:50:8e:dc:29:7c:3c:43:a6:1f (ECDSA)
\n|_ 256 ea:68:fd:d4:ce:31:e4:16:64:54:ab:bf:02:40:ff:5c (ED25519)
\n8181\/tcp open http Apache httpd 2.4.6 ((CentOS) PHP\/5.4.16)
\n|_http-server-header: Apache\/2.4.6 (CentOS) PHP\/5.4.16
\nAggressive OS guesses: Linux 3.16 (96%), Linux 4.4 (95%), Linksys EA3500 WAP (94%), Linux 3.2 – 4.9 (93%), Android 4.4.0 (91%), Linux 2.6.18 – 2.6.32 (91%), Linux 3.10 – 4.11 (90%), Linux 4.10 (90%), Linux 3.4 – 3.10 (89%), Linux 3.13 – 3.16 (89%)
\nNo exact OS matches for host (test conditions non-ideal).
\nNetwork Distance: 1 hop
\nService Info: Host: mail.d1m0.com; OS: Linux; CPE: cpe:\/o:linux:linux_kernel<\/p>\n","protected":false},"excerpt":{"rendered":"

Open Port Scanning and OS Detection Ping scan on an IP to determine host using the following command: nmap -sP 95.111.13.11 Open Port Scanning and OS Detection Start a SYN scan with OS detection using the following command: nmap -sS 95.111.13.11 -O Nmap scan report for d1m0.com (95.111.13.111) Host is up (0.00097s latency). Not shown: …<\/p>\n

Continue reading ‘Nmap scaning baiscs pt1’ »<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,4],"tags":[],"class_list":["post-527","post","type-post","status-publish","format-standard","hentry","category-linux","category-networking"],"_links":{"self":[{"href":"https:\/\/d1m0.com\/index.php?rest_route=\/wp\/v2\/posts\/527","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/d1m0.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/d1m0.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/d1m0.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/d1m0.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=527"}],"version-history":[{"count":2,"href":"https:\/\/d1m0.com\/index.php?rest_route=\/wp\/v2\/posts\/527\/revisions"}],"predecessor-version":[{"id":529,"href":"https:\/\/d1m0.com\/index.php?rest_route=\/wp\/v2\/posts\/527\/revisions\/529"}],"wp:attachment":[{"href":"https:\/\/d1m0.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=527"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/d1m0.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=527"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/d1m0.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=527"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}