NMAPJun 22 2012 08:09PM flanny16 gmail com (6 replies)
Re: NMAPJun 22 2012 09:23PM Eric Schultz (fire0088 gmail com)
hey flanny,
Im a little confused by your request, but i'll try to answer as best
as possible.
An NMap scan will only return active server applications that are
currently listening. From an abstract view, NMap mimics a client
application connecting to the server application and outputs the
result. NMap can not talk to the client application since clients (by
definition) do not listen on a port for an incoming connection.
Using the -sL option will only show which servers are active, but
nothing else. The option will not specify which ports are open. To get
more tangible results, you can remove this flag to see a detailed list
of ports that are open and some sort of fingerprinting to guess what
application is listening on the port. The results can then be imported
into a metasploit database and manipulated there. If you ahve any
questions about metasploit and working the the database, feel free to
ask.
From here you can query the database for information. For example, if
you wanted everthing on port 80, you could type:
hosts -p 80 -R
The -R flag will allow you to output the IP addresses into an RHOSTS
file. The RHOSTS file will allow you to use multiple ip addresses for
a metasploit module.
When using the RHOSTS file you need to use the syntax:
set RHOSTS file:/Path/To/Rhosts/File
On 6/22/12, flanny16 (at) gmail (dot) com [email concealed] <flanny16 (at) gmail (dot) com [email concealed]> wrote:
> I am a little rusty on my nmap skills from previous experience and googled
> around to no avail.
>
> I want to scan subnet for "active" hosts.
>
> I use zenmap on my linux box and run
>
> namp -sL 192.168.0.0 /24 but I get a list of clients.
> How to i export that to something tangible? I was able to save it to xml
> format but then what :)
>
> any feedback appreciated or other network scan suggestions.
>
> thanks,
> GMF
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL
> certificate. We look at how SSL works, how it benefits your company and how
> your customers can tell if a site is secure. You will find out how to test,
> purchase, install and use a thawte Digital Certificate on your Apache web
> server. Throughout, best practices for set-up are highlighted to help you
> ensure efficient ongoing management of your encryption keys and digital
> certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
> ------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
Im a little confused by your request, but i'll try to answer as best
as possible.
An NMap scan will only return active server applications that are
currently listening. From an abstract view, NMap mimics a client
application connecting to the server application and outputs the
result. NMap can not talk to the client application since clients (by
definition) do not listen on a port for an incoming connection.
Using the -sL option will only show which servers are active, but
nothing else. The option will not specify which ports are open. To get
more tangible results, you can remove this flag to see a detailed list
of ports that are open and some sort of fingerprinting to guess what
application is listening on the port. The results can then be imported
into a metasploit database and manipulated there. If you ahve any
questions about metasploit and working the the database, feel free to
ask.
Here is an example of what can be done:
nmap 192.168.1.0/24 -oX /root/Desktop/Scan_Results
msfconsole
db_import /root/Desktop/Scan_Results.xml
hosts -u
From here you can query the database for information. For example, if
you wanted everthing on port 80, you could type:
hosts -p 80 -R
The -R flag will allow you to output the IP addresses into an RHOSTS
file. The RHOSTS file will allow you to use multiple ip addresses for
a metasploit module.
When using the RHOSTS file you need to use the syntax:
set RHOSTS file:/Path/To/Rhosts/File
On 6/22/12, flanny16 (at) gmail (dot) com [email concealed] <flanny16 (at) gmail (dot) com [email concealed]> wrote:
> I am a little rusty on my nmap skills from previous experience and googled
> around to no avail.
>
> I want to scan subnet for "active" hosts.
>
> I use zenmap on my linux box and run
>
> namp -sL 192.168.0.0 /24 but I get a list of clients.
> How to i export that to something tangible? I was able to save it to xml
> format but then what :)
>
> any feedback appreciated or other network scan suggestions.
>
> thanks,
> GMF
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL
> certificate. We look at how SSL works, how it benefits your company and how
> your customers can tell if a site is secure. You will find out how to test,
> purchase, install and use a thawte Digital Certificate on your Apache web
> server. Throughout, best practices for set-up are highlighted to help you
> ensure efficient ongoing management of your encryption keys and digital
> certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
> ------------------------------------------------------------------------
>
>
------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.
http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442
f727d1
------------------------------------------------------------------------
[ reply ]