First page Back Continue Last page Overview Graphics
Port Scanning
# nmap -sS -sV -O <victim_IP>
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 3.6.1p2 (protocol 2.0)
80/tcp open http publicfile httpd
111/tcp open rpcbind 2 (rpc #100000)
Device type: general purpose
Running: Linux 2.4.X|2.5.X
Interesting, let's attack OpenSSH...
Is your machine a web/SSH/RPC server?
No defense – some information needs to be public!
Notes:
The first step of attacking someone, is figuring out how they are vulnerable. Port scanning is an absolute must, to find out any services that might be vulnerable to remote attacks, or authentication services that might allow an attacker to guess/brute force a set of credentials.