Kali学习笔记-day04

识别活跃的主机

1. 网络映射器工具 Nmap

　　三大功能:

　　　　1.探测一组主机是否在线

　　　　2.扫描主机端口

　　　　3.推断主机所有操作系统

测试	描述
T1	发送TCP数据包(FLag=SYN)到开放的TCP端口上
T2	发送一个空的TCP数据包到开放的TCP端口上
T3	发送TCP数据包(FLag=SYN, URG, PSH和FIN)到开放的TCP端口上
T4	发送TCP数据包(FLag=ACK)到开放的TCP端口上
T5	发送TCP数据包(FLag=SYN)到关闭的TCP端口上
T6	发送TCP数据包(FLag=ACK)到开放的TCP端口上
T7	发送TCP数据包(FLag=URG, PSH 和FIN)到关闭的TCP端口上

 

 

 

 

 

 

 

示例:　　

root@cliu-kali:/etc# nmap -sP 10.11.62.2

Starting Nmap 7.40 ( https://nmap.org ) at 2019-11-11 17:04 CST
Nmap scan report for 10.11.62.2
Host is up (0.00042s latency).
MAC Address: 00:0C:29:ED:5C:09 (VMware)
Nmap done: 1 IP address (1 host up) scanned in 0.11 seconds

======================================================

root@cliu-kali:/etc# nmap 10.11.62.2

Starting Nmap 7.40 ( https://nmap.org ) at 2019-11-11 17:10 CST
Nmap scan report for 10.11.62.2
Host is up (0.00034s latency).
Not shown: 997 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
MAC Address: 00:0C:29:ED:5C:09 (VMware)

Nmap done: 1 IP address (1 host up) scanned in 5.23 seconds

======================================================

root@cliu-kali:/etc# nmap -p 22 10.11.62.*

扫描这个网段下所有开启22端口的主机

======================================================