Herramientas de usuario
eritrea:nmap
¡Esta es una revisión vieja del documento!
Servicios abiertos
cat nmap_er.txt | grep -Ex '^[0-9]+\/.*open.*' | sed -E 's/ {2,}/ /g' | sort | uniq 110/tcp open pop3 Dovecot pop3d 1111/tcp open lmsocialserver? 1111/tcp open ssl/lmsocialserver? 1114/tcp open ssl/mini-sql? 111/tcp open rpcbind 2-4 (RPC #100000) 143/tcp open imap Dovecot imapd 1723/tcp open pptp? 21/tcp open ftp Pure-FTPd 21/tcp open ftp vsftpd 2.0.8 or later 21/tcp open ftp vsftpd (before 2.0.8) or WU-FTPD 21/tcp open tcpwrapped 2222/tcp open ssh OpenSSH 7.4 (protocol 2.0) 2222/tcp open ssh OpenSSH 8.9p1 Ubuntu 3ubuntu0.10 (Ubuntu Linux; protocol 2.0) 2222/tcp open ssh OpenSSH 8.9p1 Ubuntu 3ubuntu0.11 (Ubuntu Linux; protocol 2.0) 22/tcp open ssh OpenSSH 7.4 (protocol 2.0) 22/tcp open ssh OpenSSH 8.9p1 Ubuntu 3ubuntu0.11 (Ubuntu Linux; protocol 2.0) 22/tcp open ssh (protocol 2.0) 22/tcp open tcpwrapped 23/tcp open telnet Huawei switch telnetd 25/tcp open smtp? 3306/tcp open mysql MySQL (unauthorized) 3389/tcp open ms-wbt-server? 3389/tcp open ms-wbt-server xrdp 443/tcp open https? 443/tcp open ssl/http Apache httpd 443/tcp open ssl/http Apache httpd 2.4.52 ((Ubuntu)) 443/tcp open ssl/http SonicWALL firewall http config 465/tcp open ssl/smtp Exim smtpd 4.98.1 5050/tcp open mmcc? 53/tcp open domain ISC BIND 9.11.4-P2 (RedHat Enterprise Linux 7) 53/tcp open domain ISC BIND 9.18.18-1+ubuntu22.04.1+isc+1 (Ubuntu Linux) 53/tcp open domain ISC BIND 9.18.21-1+ubuntu22.04.1+deb.sury.org+1 (Ubuntu Linux) 587/tcp open smtp Exim smtpd 4.98.1 6789/tcp open ms-wbt-server Microsoft Terminal Services 80/tcp open http 80/tcp open http? 80/tcp open http Apache httpd 80/tcp open http Fortinet security device httpd 80/tcp open http HTTP Server 1.0 80/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP) 80/tcp open ssl/http? 8443/tcp open ssl/https-alt HTTP Server 1.0 9090/tcp open zeus-admin? 993/tcp open imaps? 995/tcp open pop3s?
Servicios cerrados
cat nmap_er.txt | grep -Ex '^[0-9]+\/.*closed.*' | sed -E 's/ {2,}/ /g' | sort | uniq 1078/tcp closed avocent-proxy 113/tcp closed ident 16001/tcp closed fmsascon 179/tcp closed bgp 20000/tcp closed dnp 3000/tcp closed ppp 3003/tcp closed cgms 3030/tcp closed arepa-cas 3367/tcp closed satvid-datalnk 4126/tcp closed ddrepl 443/tcp closed https 49/tcp closed tacacs 5718/tcp closed dpm 6789/tcp closed ibm-db2-admin
Hosts up con todos los puertos filtrados
cat nmap_er.txt | grep -Ex '.*are filtered.*' | grep -Eo '([0-9]{1,3}\.){3}[0-9]{1,3}' > hosts_up_er_ports_filtered.txt
Hosts que no tienen todos los puertos filtrados
grep -v -F -f hosts_up_er_ports_filtered.txt ips_up_er.txt | sed 'N;N;N;N;s/\n/ /g' 196.200.96.0 196.200.96.1 196.200.96.2 196.200.96.3 196.200.96.4 196.200.96.4 196.200.96.6 31.4.242.184 196.200.96.7 2.6.18.8 2.6.18.8 2.6.20.6 196.200.96.8 2.6.18.8 2.6.18.8 2.6.20.6 196.200.96.9 196.200.96.10 196.200.96.11 196.200.96.12 196.200.96.13 196.200.96.16 196.200.96.17 196.200.96.18 196.200.96.19 196.200.96.20 196.200.96.21 196.200.96.22 196.200.96.23 196.200.96.24 196.200.96.25 2.6.18.8 2.6.18.8 2.6.20.6 196.200.96.26 196.200.96.27 196.200.96.28 196.200.96.29 196.200.96.30 196.200.96.31 196.200.96.32 196.200.96.33 196.200.96.34 196.200.96.36 196.200.96.37 196.200.96.38 196.200.96.38 192.168.90.1 192.168.90.2 192.168.91.1 192.168.90.1 192.168.90.2 192.168.91.1 196.200.96.39 196.200.96.40 196.200.96.41 196.200.96.41 196.200.96.42 196.200.96.42 196.200.96.43 196.200.96.45 196.200.96.46 6.1.2.0 192.168.168.168 192.168.168.168 196.200.96.136 196.200.96.137
grep -v -F -f hosts_up_er_ports_filtered.txt ips_up_er.txt > hosts_up_er_no_all_ports_filtered.txt
eritrea/nmap.1742752238.txt.gz · Última modificación: 2025/03/23 18:50 por anonimo
Herramientas de la página
Excepto donde se indique lo contrario, el contenido de este wiki esta bajo la siguiente licencia: CC Attribution 4.0 International
