Security Basics mailing list archives
Re: NMAP
From: Eric Schultz <fire0088 () gmail com>
Date: Fri, 22 Jun 2012 17:23:57 -0400
hey flanny, Im a little confused by your request, but i'll try to answer as best as possible. An NMap scan will only return active server applications that are currently listening. From an abstract view, NMap mimics a client application connecting to the server application and outputs the result. NMap can not talk to the client application since clients (by definition) do not listen on a port for an incoming connection. Using the -sL option will only show which servers are active, but nothing else. The option will not specify which ports are open. To get more tangible results, you can remove this flag to see a detailed list of ports that are open and some sort of fingerprinting to guess what application is listening on the port. The results can then be imported into a metasploit database and manipulated there. If you ahve any questions about metasploit and working the the database, feel free to ask. Here is an example of what can be done: nmap 192.168.1.0/24 -oX /root/Desktop/Scan_Results msfconsole db_import /root/Desktop/Scan_Results.xml hosts -u
From here you can query the database for information. For example, if
you wanted everthing on port 80, you could type: hosts -p 80 -R The -R flag will allow you to output the IP addresses into an RHOSTS file. The RHOSTS file will allow you to use multiple ip addresses for a metasploit module. When using the RHOSTS file you need to use the syntax: set RHOSTS file:/Path/To/Rhosts/File On 6/22/12, flanny16 () gmail com <flanny16 () gmail com> wrote:
I am a little rusty on my nmap skills from previous experience and googled around to no avail. I want to scan subnet for "active" hosts. I use zenmap on my linux box and run namp -sL 192.168.0.0 /24 but I get a list of clients. How to i export that to something tangible? I was able to save it to xml format but then what :) any feedback appreciated or other network scan suggestions. thanks, GMF ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------