Jump to content

Nmap question

babadoctor
By babadoctor
in Networking
 Share
Go to solution Solved by PCgamer324,

um what do you mean "what information would you get"

 

it shows you everything right there.  If you're uncertain about an Nmap argument just check the man page (it's rather detailed)

Posted

What could one assume from a network that you nmap (with permission) and it shows these results? 

nmap -A --osscan-guess --version-all --open --version-trace --reason (IP HERE)

Starting Nmap 6.40-2 ( http://nmap.org ) at 2016-02-05 09:03 PST
PORTS: Using top 1000 ports found open (TCP:1000, UDP:0, SCTP:0)
--------------- Timing report ---------------
  hostgroups: min 1, max 100000
  rtt-timeouts: init 1000, min 100, max 10000
  max-scan-delay: TCP 1000, UDP 1000, SCTP 1000
  parallelism: min 0, max 0
  max-retries: 10, host-timeout: 0
  min-rate: 0, max-rate: 0
---------------------------------------------
NSE: Using Lua 5.2.
NSE: Script Arguments seen from CLI: 
NSE: Loaded 110 scripts for scanning.
NSE: Script Pre-scanning.
NSE: Starting runlevel 1 (of 2) scan.
NSE: Starting runlevel 2 (of 2) scan.
Overall sending rates: 104.18 packets / s.
mass_rdns: Using DNS server 10.1.1.10
mass_rdns: 0.00s 0/1 [#: 1, OK: 0, NX: 0, DR: 0, SF: 0, TR: 1]
DNS resolution of 1 IPs took 0.00s. Mode: Async [#: 1, OK: 1, NX: 0, DR: 0, SF: 0, TR: 1, CN: 0]
Increased max_successful_tryno for (IP HERE) to 1 (packet drop)
Increased max_successful_tryno for (IP HERE) to 2 (packet drop)
Overall sending rates: 163.27 packets / s.
NSOCK INFO [8.3870s] nsi_new2(): nsi_new (IOD #1)
NSOCK INFO [8.3870s] nsock_connect_tcp(): TCP connection requested to (IP HERE):80 (IOD #1) EID 8
NSOCK INFO [8.3870s] nsi_new2(): nsi_new (IOD #2)
NSOCK INFO [8.3870s] nsock_connect_tcp(): TCP connection requested to (IP HERE):443 (IOD #2) EID 16
NSOCK INFO [8.3910s] nsock_trace_handler_callback(): Callback: CONNECT SUCCESS for EID 8 [(IP HERE):80]
Service scan sending probe NULL to (IP HERE):80 (tcp)
NSOCK INFO [8.3910s] nsock_read(): Read request from IOD #1 [(IP HERE):80] (timeout: 6000ms) EID 26
NSOCK INFO [8.4120s] nsock_trace_handler_callback(): Callback: CONNECT SUCCESS for EID 16 [(IP HERE):443]
Service scan sending probe NULL to (IP HERE):443 (tcp)
NSOCK INFO [8.4130s] nsock_read(): Read request from IOD #2 [(IP HERE):443] (timeout: 6000ms) EID 34
NSOCK INFO [14.3920s] nsock_trace_handler_callback(): Callback: READ TIMEOUT for EID 26 [(IP HERE):80]
Service scan sending probe GetRequest to (IP HERE):80 (tcp)
NSOCK INFO [14.3930s] nsock_read(): Read request from IOD #1 [(IP HERE):80] (timeout: 5000ms) EID 50
NSOCK INFO [14.3930s] nsock_trace_handler_callback(): Callback: WRITE SUCCESS for EID 43 [(IP HERE):80]
NSOCK INFO [14.4130s] nsock_trace_handler_callback(): Callback: READ TIMEOUT for EID 34 [(IP HERE):443]
Service scan sending probe HTTPOptions to (IP HERE):443 (tcp)
NSOCK INFO [14.4130s] nsock_read(): Read request from IOD #2 [(IP HERE):443] (timeout: 5000ms) EID 66
NSOCK INFO [14.4130s] nsock_trace_handler_callback(): Callback: WRITE SUCCESS for EID 59 [(IP HERE):443]
NSOCK INFO [14.4310s] nsock_trace_handler_callback(): Callback: READ EOF for EID 66 [(IP HERE):443]
NSOCK INFO [14.4310s] nsi_delete(): nsi_delete (IOD #2)
NSOCK INFO [14.4310s] nsi_new2(): nsi_new (IOD #3)
NSOCK INFO [14.4310s] nsock_connect_tcp(): TCP connection requested to (IP HERE):443 (IOD #3) EID 72
NSOCK INFO [14.4770s] nsock_trace_handler_callback(): Callback: READ SUCCESS for EID 50 [(IP HERE):80] (1737 bytes)
NSOCK INFO [14.5020s] nsock_read(): Read request from IOD #1 [(IP HERE):80] (timeout: 4891ms) EID 82
NSOCK INFO [14.5020s] nsock_trace_handler_callback(): Callback: CONNECT SUCCESS for EID 72 [(IP HERE):443]
Service scan sending probe SSLSessionReq to (IP HERE):443 (tcp)
NSOCK INFO [14.5020s] nsock_read(): Read request from IOD #3 [(IP HERE):443] (timeout: 5000ms) EID 98
NSOCK INFO [14.5020s] nsock_trace_handler_callback(): Callback: WRITE SUCCESS for EID 91 [(IP HERE):443]
NSOCK INFO [14.5020s] nsock_trace_handler_callback(): Callback: READ SUCCESS for EID 82 [(IP HERE):80] (1199 bytes)
NSOCK INFO [14.5550s] nsock_read(): Read request from IOD #1 [(IP HERE):80] (timeout: 4838ms) EID 106
NSOCK INFO [14.5550s] nsock_trace_handler_callback(): Callback: READ SUCCESS for EID 98 [(IP HERE):443] (7 bytes): ......(
Service scan match (Probe SSLSessionReq matched with SSLSessionReq line 10426): (IP HERE):443 is ssl.  Version: |TLSv1|||
NSOCK INFO [14.5550s] nsi_delete(): nsi_delete (IOD #3)
NSOCK INFO [14.5550s] nsi_new2(): nsi_new (IOD #4)
NSOCK INFO [14.5550s] nsock_connect_ssl(): SSL connection requested to (IP HERE):443/tcp (IOD #4) EID 113
NSOCK INFO [14.5550s] nsock_trace_handler_callback(): Callback: READ EOF for EID 106 [(IP HERE):80]
NSOCK INFO [14.5550s] nsi_delete(): nsi_delete (IOD #1)
NSOCK INFO [14.5550s] nsi_new2(): nsi_new (IOD #5)
NSOCK INFO [14.5560s] nsock_connect_tcp(): TCP connection requested to (IP HERE):80 (IOD #5) EID 120
NSOCK INFO [14.5670s] nsock_trace_handler_callback(): Callback: CONNECT SUCCESS for EID 120 [(IP HERE):80]
Service scan sending probe HTTPOptions to (IP HERE):80 (tcp)
NSOCK INFO [14.5670s] nsock_read(): Read request from IOD #5 [(IP HERE):80] (timeout: 5000ms) EID 138
NSOCK INFO [14.5670s] nsock_trace_handler_callback(): Callback: WRITE SUCCESS for EID 131 [(IP HERE):80]
NSOCK INFO [14.6600s] nsock_trace_handler_callback(): Callback: READ SUCCESS for EID 138 [(IP HERE):80] (424 bytes)
Service scan match (Probe HTTPOptions matched with GetRequest line 8336): (IP HERE):80 is http-proxy.  Version: |Squid http proxy|3.3.5||
NSOCK INFO [14.6600s] nsi_delete(): nsi_delete (IOD #5)
NSOCK INFO [14.7740s] nsock_trace_handler_callback(): Callback: SSL-CONNECT SUCCESS for EID 113 [(IP HERE):443]
Service scan sending probe NULL to (IP HERE):443 (tcp)
NSOCK INFO [14.7740s] nsock_read(): Read request from IOD #4 [(IP HERE):443] (timeout: 6000ms) EID 146
NSOCK INFO [20.7740s] nsock_trace_handler_callback(): Callback: READ TIMEOUT for EID 146 [(IP HERE):443]
Service scan sending probe GetRequest to (IP HERE):443 (tcp)
NSOCK INFO [20.7740s] nsock_read(): Read request from IOD #4 [(IP HERE):443] (timeout: 5000ms) EID 162
NSOCK INFO [20.7740s] nsock_trace_handler_callback(): Callback: WRITE SUCCESS for EID 155 [(IP HERE):443]
NSOCK INFO [20.8060s] nsock_trace_handler_callback(): Callback: READ SUCCESS for EID 162 [(IP HERE):443] [EOF](873 bytes)
Service scan match (Probe GetRequest matched with NULL line 1206): (IP HERE):443 is SSL/http.  Version: |SonicWALL firewall http config|||
NSOCK INFO [20.8060s] nsi_delete(): nsi_delete (IOD #4)
NSE: Script scanning (IP HERE).
NSE: Starting runlevel 1 (of 2) scan.
NSE: Starting address-info against (IP HERE).
NSE: Starting http-auth against (IP HERE):80.
NSE: Starting http-cors against (IP HERE):80.
NSE: Starting http-favicon against (IP HERE):80.
NSE: Starting http-generator against (IP HERE):80.
NSE: Starting http-git against (IP HERE):80.
NSE: Starting http-methods against (IP HERE):80.
NSE: Starting http-open-proxy against (IP HERE):80.
NSE: Starting http-robots.txt against (IP HERE):80.
NSE: Starting http-title against (IP HERE):80.
NSE: Starting skypev2-version against (IP HERE):80.
NSE: Starting http-auth against (IP HERE):443.
NSE: Starting http-cors against (IP HERE):443.
NSE: Starting http-favicon against (IP HERE):443.
NSE: Starting http-generator against (IP HERE):443.
NSE: Starting http-git against (IP HERE):443.
NSE: Starting http-methods against (IP HERE):443.
NSE: Starting http-robots.txt against (IP HERE):443.
NSE: Starting http-title against (IP HERE):443.
NSE: Starting ssl-cert against (IP HERE):443.
NSE: Starting ssl-date against (IP HERE):443.
NSE: Starting ssl-known-key against (IP HERE):443.
NSE: Starting sslv2 against (IP HERE):443.
NSE: Starting tls-nextprotoneg against (IP HERE):443.
NSE: Finished address-info against (IP HERE).
NSE: GET Request: GET http://www.google.com HTTP/1.0
Host: www.google.com


NSE: tls-nextprotoneg: Server doesn't support TLS NPN extension.
NSE: Finished tls-nextprotoneg against (IP HERE):443.
NSE: HERE: 1454691824
NSE: Finished ssl-date against (IP HERE):443.
NSE: Finished sslv2 against (IP HERE):443.
NSE: Finished ssl-known-key against (IP HERE):443.
NSE: HEAD Request: HEAD http://www.google.com HTTP/1.0
Host: www.google.com


NSE: ssl-cert against (IP HERE):443 threw an error!
/usr/local/bin/../share/nmap/nselib/stdnse.lua:397: attempt to perform arithmetic on a nil value
stack traceback:
	/usr/local/bin/../share/nmap/nselib/stdnse.lua:397: in function 'date_to_timestamp'
	/usr/local/bin/../share/nmap/scripts/ssl-cert.nse:196: in function 'output_tab'
	/usr/local/bin/../share/nmap/scripts/ssl-cert.nse:241: in function </usr/local/bin/../share/nmap/scripts/ssl-cert.nse:235>
	(...tail calls...)

NSE: CONNECT Request: CONNECT www.google.com:80 HTTP/1.0


NSE: Finished skypev2-version against (IP HERE):80.
NSE: http-methods.nse: HTTP Status for OPTIONS is 502
NSE: Finished http-methods against (IP HERE):80.
NSE: Finished http-robots.txt against (IP HERE):80.
NSE: Finished http-robots.txt against (IP HERE):443.
NSE: Finished http-git against (IP HERE):80.
NSE: Finished http-auth against (IP HERE):80.
NSE: Finished http-git against (IP HERE):443.
NSE: Finished http-title against (IP HERE):80.
NSE: Finished http-favicon against (IP HERE):443.
NSE: Finished http-generator against (IP HERE):80.
NSE: http-methods: OPTIONS / failed.
NSE: Finished http-methods against (IP HERE):443.
NSE: Finished http-auth against (IP HERE):443.
NSE: Finished http-title against (IP HERE):443.
NSE: Finished http-generator against (IP HERE):443.
NSE: Finished http-favicon against (IP HERE):80.
NSE: Finished http-cors against (IP HERE):443.
NSE: Finished http-cors against (IP HERE):80.
NSE: Finished http-open-proxy against (IP HERE):80.
NSE: Starting runlevel 2 (of 2) scan.
Nmap scan report for cpe-45-49-237-241.socal.res.rr.com ((IP HERE))
Host is up, received syn-ack (0.053s latency).
Scanned at 2016-02-05 09:03:25 PST for 30s
Not shown: 996 closed ports, 2 filtered ports
Reason: 996 conn-refused and 2 no-responses
PORT    STATE SERVICE    REASON  VERSION
80/tcp  open  http-proxy syn-ack Squid http proxy 3.3.5
|_http-methods: No Allow or Public header in OPTIONS response (status code 502)
| http-open-proxy: Potentially OPEN proxy.
|_Methods supported:  GET HEAD
|_http-title: Document Moved
443/tcp open  ssl/http   syn-ack SonicWALL firewall http config
|_http-title: DELL SonicWALL - Authentication
|_ssl-date: 2016-02-05T17:03:44+00:00; 0s from local time.
Service Info: Device: firewall
Final times for host: srtt: 52701 rttvar: 9832  to: 100000

NSE: Script Post-scanning.
NSE: Starting runlevel 1 (of 2) scan.
NSE: Starting runlevel 2 (of 2) scan.
Read from /usr/local/bin/../share/nmap: nmap-payloads nmap-service-probes nmap-services.
Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 31.38 seconds

 

OFF TOPIC: I suggest every poll from now on to have "**CK EA" option instead of "Other"

Link to comment
https://linustechtips.com/topic/541770-nmap-question/
Share on other sites
Link to post
Share on other sites
Posted
  • Solution

um what do you mean "what information would you get"

 

it shows you everything right there.  If you're uncertain about an Nmap argument just check the man page (it's rather detailed)

Ultimate XP gaming system build log coming soon!  Q8200 // 8GB DDR2 // Asus P5E Deluxe X48 // Asus 4870 DARK KNIGHT X-Fire // Supreme FX sound // BFG Ageia PhysX PCI Co-Processor // AX 860x with Silverstone extensions 

Link to comment
https://linustechtips.com/topic/541770-nmap-question/#findComment-7172158
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Networking

×