Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-13 14:59 ?D1ú±ê×?ê±?? Initiating Parallel DNS resolution of 1 host. at 15:00 Completed Parallel DNS resolution of 1 host. at 15:00, 5.51s elapsed Initiating SYN Stealth Scan at 15:00 Scanning ***.***.***.*** [1000 ports] Discovered open port 3389/tcp on ***.***.***.*** Discovered open port 443/tcp on ***.***.***.*** Discovered open port 445/tcp on ***.***.***.*** Discovered open port 135/tcp on ***.***.***.*** Discovered open port 139/tcp on ***.***.***.*** Discovered open port 912/tcp on ***.***.***.*** Discovered open port 902/tcp on ***.***.***.*** Completed SYN Stealth Scan at 15:00, 0.13s elapsed (1000 total ports) Nmap scan report for ***.***.***.*** Host is up (0.00085s latency). Not shown: 993 closed ports PORT STATE SERVICE 135/tcp open msrpc 139/tcp open netbios-ssn 443/tcp open https 445/tcp open microsoft-ds 902/tcp open iss-realsecure 912/tcp open apex-mesh 3389/tcp open ms-wbt-server
Read data files from: *:\***\***\***\Nmap Nmap done: 1 IP address (1 host up) scanned in 6.88 seconds Raw packets sent: 1000 (44.000KB) | Rcvd: 2007 (84.308KB)
Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-13 15:40 ?D1ú±ê×?ê±?? Nmap scan report for 192.168.0.1 Host is up (0.018s latency). Not shown: 992 closed ports PORT STATE SERVICE 23/tcp open telnet 80/tcp open http 135/tcp filtered msrpc 139/tcp filtered netbios-ssn 445/tcp filtered microsoft-ds 50300/tcp filtered unknown 50389/tcp filtered unknown 50500/tcp filtered unknown
Nmap scan report for 10.136.16.194 Host is up (0.00076s latency). Not shown: 993 closed ports PORT STATE SERVICE 135/tcp open msrpc 139/tcp open netbios-ssn 443/tcp open https 445/tcp open microsoft-ds 902/tcp open iss-realsecure 912/tcp open apex-mesh 3389/tcp open ms-wbt-server
Nmap done: 2 IP addresses (2 hosts up) scanned in 19.38 seconds
指定端口扫描
-p:指定扫描端口
1
nmap -p 3389,20-100 192.168.0.1
1 2 3 4 5 6 7 8 9
Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-13 15:50 ?D1ú±ê×?ê±?? Nmap scan report for 192.168.0.1 Host is up (0.030s latency). Not shown: 80 closed ports PORT STATE SERVICE 23/tcp open telnet 80/tcp open http
Nmap done: 1 IP address (1 host up) scanned in 7.28 seconds
Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-13 15:54 ?D1ú±ê×?ê±?? Nmap scan report for 10.136.16.1 Host is up (0.020s latency). MAC Address: BC:3F:8F:92:AA:2A (Huawei Technologies) ...... ...... Nmap scan report for 10.136.16.183 Host is up (0.13s latency). MAC Address: 8C:FE:57:C4:DD:16 (Apple) ...... ...... Nmap scan report for 10.136.16.255 Host is up (0.0020s latency). MAC Address: BC:3F:8F:92:AA:2A (Huawei Technologies) Nmap done: 255 IP addresses (234 hosts up) scanned in 16.84 seconds
sL 列表扫描
简单主机发现
对网络中的主机进行反向域名解析获取名字,不发送任何报文
-sL:打印目标主机的列表
1
nmap -sL 10.136.16.1/24
1 2 3 4 5 6
Starting Nmap 7.80 ( https://nmap.org ) at 2019-09-13 16:16 ?D1ú±ê×?ê±?? Nmap scan report for 10.136.16.0 ...... ...... Nmap scan report for 10.136.16.255 Nmap done: 256 IP addresses (0 hosts up) scanned in 6.64 seconds